When we try to add the Protection Engine (SPE) 9 server to the SPE 9 console using secure LDAP authentication, the console displays a connection error. On the REST_API_LOG.txt file of the SPE 9 server, we find either a connection error or a log entry containing: 

Root exception is javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

 Symantec Protection Engine (SPE) 9.0.1

On the target SPE 9 server you seek to add to the SPE 9 console, in the application.properties file, examine the URL for the ldap source.

On that same SPE 9 server, add an entry for the IP address of the LDAP server to the hostname use as the URL for the LDAP source in the application.properties file.