We are trying to configure SSL for Bitbucket 5.6.1 using the guide at this link and are having some issues.
We have been granted a cert from our network security team using our internal CA Root. I am generating the ssl-keystore file by running the following command-
keytool -import -alias tomcat -file CARootFile.crt -keystore ./ssl-keystore -storepass changeit
I have then added the following lines to the bitbucket.properties file-
server.port=8443
server.scheme=https
server.ssl.enabled=true
server.ssl.key-store=/opt/stash-data/shared/config/ssl-keystore
server.ssl.key-store-type=jks
server.ssl.key-alias=tomcat
server.ssl.key-store-password="changeit"
server.ssl.key-password="changeit"
Post service bounce, I receive the attached log output. A notable log entry is-
java.lang.IllegalArgumentException: java.io.IOException: Alias name [tomcat] does not identify a key entry
Interesting thing is when I execute the following-
keytool -list -keystore ./ssl-keystore -storepass changeit
I receive the following-
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
tomcat, Jan 14, 2018, trustedCertEntry,
Certificate fingerprint (SHA1): 92:C5:8A:CC:54:50:42:03:48:9A:3C:60:9C:49:60:53:96:2C:CB:22
Any assistance / guidance would be appreciated. Thanks in advance!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.