Some MVE LDAP configurations use a load balancer or a virtual IP (VIP) to redirect LDAPS requests. In these cases, the root CA certificate of the domain must be installed and trusted in the MVE Java truststore.
Import the root CA certificate, and then confirm that the certificate is trusted.
Back up your database and application files.
Stop the MVE service.
Run the command prompt as an administrator, and then type the following:
"C:\Program Files\Lexmark\Markvision Enterprise\jre\bin\keytool.exe" -import -trustcacerts -alias EnterpriseRootCA -file C:\temp\EnterpriseRootCA.cer -keystore "C:\Program Files\Lexmark\Markvision Enterprise\jre\lib\security\cacerts"
When prompted to enter the keystore password, type changeit.
When prompted whether to trust the certificate, type yes.
Notes:
- If the process is successful, then a Certificate was added to keystore message appears.
- If the file-level permissions for the cacerts file do not allow you to update the file, then an access-denied message appears. You can either update the permissions for the file or run the command prompt as an administrator who has the permission to update the file.
Restart the MVE service.