After Confluence Data Center Certificate update, Confluence did not come back up on restart

Maurine Collins May 17, 2024

Attempting to install latest certificate, getting the following error. Looking to see anyone can share some insight on experiencing this error, after updating Confluence Data Center did not come back up...thanks for any knowledge shared

2024-05-17 17:11:11,399 ERROR [AtlassianEvent::CustomizableThreadFactory-1] [renderer.internal.http.HttpClientFetcher] fetch Unable to perform a request to: https://myconfluencetest.aafes.com/rest/gadgets/1.0/g/messagebundle/en_GB/gadget.common%2Cgadget.confluence
org.apache.http.conn.ConnectTimeoutException: Connect to myconfluencetest.aafes.com:443 [myconfluencetest.aafes.com/35.155.221.139] failed: Connect timed out

1 answer

2 votes
Jim Knepley - ReleaseTEAM
Marketplace Partner
Marketplace Partners provide apps and integrations available on the Atlassian Marketplace that extend the power of Atlassian products.
May 17, 2024

The error "Connect timed out" isn't directly related to the certificate, it indicates that your client got tired of waiting for the server to respond and gave up. Important note: the client and the server can be the same program if Confluence tries to "talk to itself" through the REST API, which Jira Datacenter certainly does.

This can be caused by anything interfering with the delivery of network traffic in either direction. Common reasons are network or system firewalls filtering traffic, misconfigured NAT/PAT translations, or the interface receiving traffic for 35.155.221.139 being down, even if other interfaces on the system are up. You'll need to talk to a networking person to track that down.

It's possible that a web application firewall (WAF) is trying to connect to your server and is failing to connect upstream because it doesn't trust the certificate you have loaded, so it doesn't respond to anything on that IP. It's incorrect, but sadly common, for people to trust the "end node" certificate when trying to solve certificate trust issues when they should trust a signing CA.

I can give you more specific ideas if you paint a clearer picture of how traffic reaches your system from the Internet.

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
SERVER
VERSION
8.5.4
TAGS
AUG Leaders

Atlassian Community Events