ACF2 target accounts cannot verify in PAM, the GUI states an SSL handshake error. In the Tomcat logs, the error is "certificate signature validation failed".
Privileged Access Manager, all versions
The certificate listed in the ACF2 target application was not valid.
In the target application for ACF2 there is a magnifying glass which will obtain the SSL certificate from the ACF2 server. To update the certificate, click the magnifying glass, then click OK.