When executing Workflows that add or update an Active Directory server, the workflow succeeds but you receive an WARNING message similar to the following in the scripting log:

SCRIPTING_LOG - [Update an Active Directory server.../Import a certificate from URL/Import a certificate from URL with certificate alias (3/5/25 10:26:28)] One or more certificates in the chain are not valid.

After the execution of the workflow, the Active Directory inventory item is fully functional and can be leveraged as normal.

Aria Orchestrator 8.x

By default this workflow attempts a REST GET request that may or may not be able to successfully connect and validate the certificate chain.  This can be caused by a certificate server not running an IIS instance or an internal signing CA.

Though there is a WARNING message reported, it does not affect the Workflow or the usage of the Active Directory object that is created in Orchestrator.  This message can be ignored when the workflow itself succeeds.