After importing the certificate to the keystore, then try to create the OS/400 endpoint the following error is displayed in the jcs_daily.log

[ApacheDS Worker-thread-169] (:com.ca.commons.jndi.pool.ConnectionPool:64) ERROR  - ConnectionPool [com.ca.jcs.as400.AS400ConnectionFactory@1926baf4: 0/4 idle, 0/10 active]: problem borrowing connection
javax.net.ssl.SSLHandshakeException: Received fatal alert: no_certificate
    at sun.security.ssl.Alerts.getSSLException(Unknown Source)[:1.8.0_60]

Identity Manager 14.x

In the java.security file the ciphers below were disabled, after removing it and restarting the JCS the connection worked fine.

From the document below, in the java.security file, remove the ECDH and ECDHE ciphers

See, the "Platform Level TLS Protocol Setting for JCS" section from the document:

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-manager/14-4/reference/advanced-configuration-options/domain-configuration/tls-configuration.html

Further information about OS/400 endpoint can be found in the link below:

https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-management-and-governance-connectors/1-0/connectors/ibm-connectors/ibm-i5-os-os-400.html