Issue with application links https

Having a strange thing here trying to link jira/conf to other jira/conf via https when the domain is diffrent but its only crashing on one way.

 

What I have is
https://jira.domain1.com using *.domain1.com cert (added as well jira.domain2.com to this keystore)
https://jira.domain2.com using jira.domain2.com cert (added as well *.domain1.com to this keystore)

When I try try an application link from jira.domain1.com to https://jira.domain2.com  it gives me DIRECTLY:

No response was received from the URL you entered - it may not be valid. Please fix the URL below, if needed, and click Continue.

but when I to the other way around it says as it shold first.. 
You creat a link from ... to... and then I have I am administrator on both instances checkd.. and press continue ... and it tells me now it will go to the other end. It does .. and then we get the error again:

Unable to create reciprocal link.
No response was received from the URL you entered - it may not be valid. Please fix the URL below, if needed, and click Continue.

Click Continue to be redirected back to https://xxxxx.xxxxx.xxx. Click Close to remain here.

tried the 

PS E:\temp> java.exe SSLPoke xxxx.xxxx.xxx 443

from jira.domain1.com server

sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderE
xception: unable to find valid certification path to requested target
at sun.security.validator.PKIXValidator.doBuild(Unknown Source)
at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
at sun.security.validator.Validator.validate(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.validate(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.checkTrusted(Unknown Source)
at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)
at sun.security.ssl.ClientHandshaker.serverCertificate(Unknown Source)
at sun.security.ssl.ClientHandshaker.processMessage(Unknown Source)
at sun.security.ssl.Handshaker.processLoop(Unknown Source)
at sun.security.ssl.Handshaker.process_record(Unknown Source)
at sun.security.ssl.SSLSocketImpl.readRecord(Unknown Source)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
at sun.security.ssl.SSLSocketImpl.writeRecord(Unknown Source)
at sun.security.ssl.AppOutputStream.write(Unknown Source)
at sun.security.ssl.AppOutputStream.write(Unknown Source)
at SSLPoke.main(SSLPoke.java:31)
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to reques
ted target
at sun.security.provider.certpath.SunCertPathBuilder.build(Unknown Source)
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source)
at java.security.cert.CertPathBuilder.build(Unknown Source)
... 16 more

According to our datacom dudes its wide open betweend this servers.

Buy why does this work half the way?

 

 

1 answer

0 votes
Josh Steckler Community Champion May 15, 2017

Are these self-signed or CA certificates?

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Thursday in Confluence

What are your project planning tips?

Hello Community,  Jessica here from the Confluence product marketing team! Today I wanted to get your takes on project planning –– what works, what doesn’t, how do you know if you’re doing it r...

168 views 0 3
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you