Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Jira not picking up renewed SSL cert?

Matt Yopp
Matt Yopp
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 8, 2020

So here's a weird one. I need to renew my SSL cert for our Jira instance. Easy enough it would seem, right? I've created a new JKS, got a new cert, used keytool to import the cert into the keystore and verified everything is there. I then ran conf.bat to reconfigure Jira (while the service is shutdown) AND manually checked the server.xml file to verify that Jira SHOULD be using the new JKS to pull in the new cert. However, when I restart Jira, it is still somehow pulling the old certificate which is set to expire soon. At first I thought it was simply the browser caching the old SSL cert. Alas, no... even a machine which has never been to our servicedesk site pulls the old cert. I even went so far as to remove the old JKS from its location AND renamed it. Anyone know where else I might look in Jira to see why the old cert is still getting pulled in?

Answer
Watch
Like Be the first to like this
1246 views

1 answer

1 accepted

0 votes
Answer accepted
Andrew Laden
Andrew Laden
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 10, 2020

Make sure that you don't have a proxy or reverse proxy or load balancer that is "front ending" your jira instance, Like nginx or apache. A know a lot of people (myself included) that use a nginx to handle the SSL traffic which offloads the work of decryption from the tomcat that is running jira.

View More Comments
Matt Yopp
Matt Yopp
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 10, 2020

Bingo, that was it. Had no clue, until a chat with out networking team, that the URL was running through our F5 appliance even though it is internal.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security