Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Jira 8 Administration Cookbook

You're reading from   Jira 8 Administration Cookbook Over 90 recipes to administer, customize, and extend Jira Core and Jira Service Desk

Arrow left icon
Product type Paperback
Published in Jun 2019
Publisher
ISBN-13 9781838558123
Length 280 pages
Edition 3rd Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Patrick Li Patrick Li
Author Profile Icon Patrick Li
Patrick Li
Arrow right icon
View More author details
Toc

Table of Contents (11) Chapters Close

Preface 1. Jira Server Administration FREE CHAPTER 2. Customizing Jira for Your Projects 3. Jira Workflows 4. User Management 5. Jira Security 6. Emails and Notifications 7. Integrations with Jira 8. Jira Troubleshooting and Administration 9. Jira Service Desk 10. Other Books You May Enjoy

Installing SSL certificates from other applications

You might need to connect Jira to other services, such as LDAP, mail servers, and other websites. Often, these services make use of SSL. In such cases, the connection will fail, and you will see the following errors in your Jira log file:

javax.net.ssl.SSLHandshakeException: 
sun.security.validator.ValidatorException: PKIX path building failed:  
sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification
path to requested target

Getting ready

For this recipe, we will use the Java keytool utility, so make sure you have the following configuration set up:

  • Obtain the required SSL certificate from the target system.
  • Ensure that the JAVA_HOME environment variable is set properly.
  • Make sure you know which JDK/JRE Jira is using. You can find this information on the System Info page, where you need to look for the java.home property.
  • Make sure your JRE/JDK's bin directory is added to your PATH environment variable, and the keytool command will output its usage.
  • Obtain the password for the Java trust store used by Jira.

How to do it...

In this recipe, let's assume we want to connect Jira to an LDAP server that is running on SSL. Perform the following steps to make it a trusted site inside Jira:

  1. Open up a Command Prompt and go to the directory where the certificate file resides.
  1. Import the certificate into the trust store by running keytool -import -alias tomcat -file file.cer $JAVA_HOME/jre/lib/security/cacertscommand, where file.cer is the certificate file.
  2. Restart Jira to apply the changes.

How it works...

When Jira attempts to connect to an SSL-protected service, it will first check whether the target service's certificate can be trusted. This is done by checking to see whether the certificate is present in what is called the Java trust store. If the certificate is not present, the connection will fail.

The trust store is a special KeyStore repository, usually called cacerts, and is located in the $JAVA_HOME/lib/security directory on the server.

We used the keytool utility to import the certificate to our local trust store, so the target service will be registered as a trusted service and will allow Jira to connect to it successfully.

You have been reading a chapter from
Jira 8 Administration Cookbook - Third Edition
Published in: Jun 2019
Publisher:
ISBN-13: 9781838558123
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image