Cannot get HTTPS working after Confluence upgrade to 6.15.2

Yes, I followed the same steps from that documentation.  I first tried the self signed certificate which is very simple and straightforward.  But when I launch the web browser https://localhost:8443, it doesn't work.  So I then tried using Private Certificate via those steps and still not successful.  I am not getting any errors, the page just doesn't open.  However, It still opens when I launch http://localhost:8090.

Jack,

Thank you for the follow-up!

When you open the page in your browser, I could recommend opening Developer Tools and seeing what occurs there. You can check the Network tab, and it'll let you know what it's being stuck on.

I'm also assuming your SSL isn't going to be setup for simply 'localhost' and you have a URL for it? I would then say you run this test on your SSL site and see what the problem might be.

Lastly, you can find any errors your Confluence instance is generating by having a look at your server logs. Take a look at Working with Confluence Logs for more details if you aren't sure about that.

Regards,

Shannon

But this server is hosted in the internal network only.  It's not accessible from the outside.  I can't run that SSL site test.

As a test, I had setup a brand new server installed with the Confluence evaluation.  I was simply testing the self signed certificate and still couldn't get it to work. 

- I created the self-signed certificate per the instruction by running the keytool command.  

- I modified the server.xml. 

- I changed the Confluence base URL.

- I added security constraint to redirect all URLs to HTTPS.

What am I missing here?  It should be straight forward.  

Jack,

In that case, can you help me to understand what exactly happens when you say the SSL with HTTPS isn't working?

The other two steps I recommended earlier can help us to understand that.

1. Open Developer Tools and seeing is occurring there. You can check the Network tab, and it'll let you know what it's stuck on.
2. Find any errors your Confluence instance is generating by having a look at your server logs. Take a look at Working with Confluence Logs for more details if you aren't sure about that.

You can also try clicking on the lock  in your browser address bar that you see when you visit your site securely:

Just send along any details that it provides there and it can help us to narrow down the issue. Feel free to censor any private site details in your screenshot.

Thank you!

Regards,

Shannon

When I launch the website with https, it just doesn't go anywhere with the following:

This page can’t be displayed

•Make sure the web address https://ahrq-confluence.itsc.hhs-itsc.local:8443 is correct.
•Look for the page with your search engine.
•Refresh the page in a few minutes.

.  

I found this error from the log.  What does that mean?

Caused by: java.lang.IllegalArgumentException: Failed to load keystore type [JKS] with path [C:\Windows\system32\config\systemprofile/.keystore] due to [Illegal character in opaque part at index 2: C:\Windows\system32\config\systemprofile/.keystore]

Hello Jack,

Thank you for providing those details.

Could you have a look at your Viewing System Information page and let us know which JRE your Confluence is using according to that page?

The problem is that there’s a mismatch with which keystore your cert was installed into vs the Java that Confluence is actually using. The logs appear to indicate to us that it's using the System Java.

You may need to switch to the JRE that came with Confluence, if this is the one that Confluence believes itself to be using. Have a look below for steps on that, starting at step 2:

• Running Confluence over SSL or HTTPS > Option 2: Use a certificate issued by a Certificate Authority (recommended)

Alternatively if you find yourself having trouble with the command line keytool, there is an open-source GUI tool that can help managing keystores. We have instructions for using it on our Jira document Running Jira Applications over SSL or HTTPS. The article refers to Jira, but the instructions are the same for Confluence.

You can download it from the third-party website here:

• Portecle on Sourceforge

Regards,

Shannon