I work for research center and we have Bamboo on an air-gapped, off the internet, network. We used self-signed certificates and always have warnings when going to the Bamboo home page. We now have our own CA and those warnings are gone when going to the Bamboo home page. But now, when trying to configure a connection to LDAP for authentication, I get an PKIX error.
More about the environment: The system admin put the root CA on the Bamboo server and the other necessary things. He gave me the new certs, which I put in to the Bamboo user's ".keystore" file, which took care of the warnings I mentioned. But I still can't get LDAP to work. Any suggestions on what I missed?
We would keep the cert in the lib/security directory. When we get a new java, we lose the cert. You were close. It was the LDAP cert itself that was missing.
Did you import your root CA's certificate in the java truststore? (the cacerts file).
The cacerts file contains lots of certificates by default from public CA companies but not your own company CA of course.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.