LDAP with SSL using MID Server

jonas_franzen · ‎12-13-2013

Anyone know the reason why the SSL checkbox should disappear when using a midserver for LDAP?

Ive seen the note ""Note: The SSL connection is not available with the MID Server."" on this page https://wiki.servicenow.com/index.php?title=LDAP_Integration_Setup#Step_5._Set_Connection_Properties .
But if I use the instructions from this page http://wiki.servicenow.com/index.php?title=MID_Server_Configuration#Adding_SSL_Certificates to add a certificate to the mid-server and change the ldap-link to "ldaps://server.domain:636" it seems to be working…

BTW whats the default password for the cacerts keystore?
Whats does it contain by default?
I had to rename the default keystore and created a new one setting my own password.

raves12 · ‎09-06-2017

Hi Johnathon,

Pretty useful stuff. I am trying to switchover from VPN to midserver to communicate to the LDAP server. We have 3 LDAP servers configured out of which two are throwing the error "sun.security.validator.ValidatorException: PKIX path building failed: java.security.cert.CertPathBuilderException: No issuer certificate for certificate in certification path found."

Do you have any idea why it seems to be working for one LDAP server while not for others?

I will go through the steps you provided once I get the certificates to see if this resolves the issue. Any inputs from your side will be helpful.

Regards,

Ravi

Service Now Developer

Aaron Silverman · ‎02-09-2021

I was in the same exact boat as you and did every single thing you did EXCEPT reboot the MID server. Instead of rebooting the actual VM, though, I was able to navigate to the instance MID server record and "Restart MID" to re-initiate it (since that would be quicker). Thank you so much for the simple step! I was starting to lose it....

james wells · ‎09-20-2017

I was able to get ldaps://server.domain:636 as well - contrary to Wiki and the cert test - but its good b/c that was requirement.