Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Cannot get SSL configured on Bitbucket Server 5

govindarajan padmanaban
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
June 16, 2017

Hi,

we generated the CSR based on java key tool in linux and the ssl has imported to keytool “/home/ec2-user/ssl-keystores”successfully with the below commands. we need your help to resolve this.

 

[root@ip-172-31-5-38 bin]# ./keytool -import -alias root -keystore /home/ec2-user/ssl-keystores -trustcacerts -file /home/ec2-user/gd_bundle-g2-g1.crt

Enter keystore password:

Certificate was added to keystore

[root@ip-172-31-5-38 bin]# ./keytool -import -alias intermed -keystore /home/ec2-user/ssl-keystores -trustcacerts -file /home/ec2-user/gdig2.crt

Enter keystore password:

Certificate already exists in keystore under alias <root>

Do you still want to add it? [no]:  yes

Certificate was added to keystore

[root@ip-172-31-5-38 bin]# ./keytool -import -alias tomcat -keystore /home/ec2-user/ssl-keystores -trustcacerts -file /home/ec2-user/209134c24b7a184f.crt

Enter keystore password:

Certificate reply was installed in keystore

----------------------------------------------------------------------------------------------------------

We created a file bitbucket.properties with the below configuration and it wont works,

server.additional-connector.1.port=7990

server.additional-connector.1.redirect-port=8443

server.additional-connector.1.proxy-port=8443

server.additional-connector.1.require-ssl=true

server.additional-connector.1.secure=true

server.additional-connector.1.scheme=https

server.additional-connector.1.proxy-name=git.apptium.com

server.additional-connector.1.ssl.enabled=true

server.additional-connector.1.ssl.client-auth=want

server.additional-connector.1.ssl.protocol=TLSv1.2

server.additional-connector.1.ssl.key-store=/home/ec2-user/ssl-keystores

server.additional-connector.1.ssl.key-store-password=Apptium$123

server.additional-connector.1.ssl.key-alias=tomcat

server.additional-connector.1.ssl.key-store-type=jks

----------------------------------------------------------------------------------------------------

After doing all this we changed the base url to https://git.apptium.com/8443

Not working.

 

 

1 comment

TRW-Admin August 9, 2017

..Both ssl.key-store-password and ssl.key-password require explicit configuration. Even if you did not configure both values in the server.xml file, values for both entries need to be explicitly set in bitbucket.properties to secure Bitbucket with SSL...

https://confluence.atlassian.com/bitbucketserver/migrate-server-xml-customizations-to-bitbucket-properties-897811761.html

Maybe the issue?

Comment

Log in or Sign up to comment
TAGS
AUG Leaders

Atlassian Community Events