When configuring the LDAP integration, there will be fields for the RootCA, Cert name, and Key path, which may not accept their values depending on configurations. One such is the application of the Cert name field, which will not be successful.
EEM 12.6.6 release
Current theory is the EEM instance was configured for FIPS which may be enforcing the cert key field behind the scenes
Directly modify server.xml in X:\Program Files\CA\SC\EmbeddedEntitlements\config\server and update to specify the cert file name directly.