I have the MySQL example SCIM connector set up on a vm with the opp agent installed on the same vm, it’s running tomcat with a self signed certificate running on port 8443. I’m able to return values from the tester with it all working however when testing through okta I get the following error:
The connector configuration could not be tested. Make sure that the URL, Authentication Parameters are correct and that there is an implementation available at the URL provided. API error: The Provisioning Agent call to getConnectorConfig failed. Error code: 1, error: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Sorry for my rambling I can provide more details if needed. Can anyone help?
EDIT: The issue was that the provisioning agent uses a different jre to the one installed on the server so if you have a self signed cert you have to add that cert to the jre/lib/security/cacerts in the okta directory rather than the one on the server after that it worked and provisioned across fine the best way to test is by running the okta java.exe rather than a locally install java.exe. For more info check this document: https://support.okta.com/help/Documentation/Knowledge_Article/30093436-Creating-SCIM-Connectors