LDAPS is a bit tricky as this is technically implemented based on the JVM level.
This means for you to have add the respective Trusted Certificates to the JVM level “cacerts” file.
Not in your case I hope, but anyway worth mention is that you have to make sure you LDAP server and
your JDK / IS have a matching pair of protocols and ciphers.
When you not have a need for multiple / different trust stores in IS, you can also configure it to be the global one.
See: