Running Confluence Over SSL (HTTPS)

HI All,

Follow this https://confluence.atlassian.com/display/DOC/Running+Confluence+Over+SSL+or+HTTPS

now i cannot restart the services?

Any idea?

AS

8 answers

Hi,

can you provide more details to the changes you made? Version you are using? server.xml etc. Any log file available. For example - the connector might not start because of port already in use by another process.

Thx, Sabine

HI,

<Server port="8000" shutdown="SHUTDOWN" debug="0">
    <Service name="Tomcat-Standalone">
        <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" port="8090" minProcessors="5" maxProcessors="75"
                   enableLookups="false" redirectPort="443" acceptCount="10" debug="0" connectionTimeout="20000"
                   useURIValidationHack="false" URIEncoding="UTF-8" keystorePass="changeit"
                   <Engine name="Standalone" defaultHost="localhost" debug="0">
            <Host name="localhost" debug="0" appBase="webapps" unpackWARs="true" autoDeploy="false">

                <Context path="" docBase="../confluence" debug="0" reloadable="false" useHttpOnly="true">
                    <!-- Logger is deprecated in Tomcat 5.5. Logging configuration for Confluence is specified in confluence/WEB-INF/classes/log4j.properties -->
                    <Manager pathname="" />
                </Context>
            </Host>

        </Engine>

        <!--
            To run Confluence via HTTPS:
             * Uncomment the Connector below
             * Execute:
                 %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows)
                 $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA  (Unix)
               with a password value of "changeit" for both the certificate and the keystore itself.
             * Restart and visit https://localhost:8443/

             For more info, see http://confluence.atlassian.com/display/DOC/Adding+SSL+for+Secure+Logins+and+Page+Security
        -->

        <Connector port="443" maxHttpHeaderSize="8192"
                   maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
                   enableLookups="false" disableUploadTimeout="true"
                   acceptCount="100" scheme="https" secure="true"
                   clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
                   URIEncoding="UTF-8" keystorePass="changeit"/>
				   keystoreFile="C:\Program Files\Atlassian\Confluence\jre\lib\security/cacerts"/>
    </Service>
</Server>

Hi,

ok, you are using the standard SSL port 443. Is this port free (no Apache or other process using this port). Can you start the server if you try to use 8443? Just to check if it is an port issue.

HTH, Sabine

According to issues triggered by the certificate please check if you have one of the following exceptions in your Confluence/Tomcat Log:

http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html#Troubleshooting

HTH, Sabine

HI

Very new to Conflunce and now i can start the service after i copy back from the backup.

so port 443 is not the issue. but when i go to the https://conflunce.mydomain.comnothing works.

also my ssl certificate is wildcard certificate *.externaldomain.com .

which log file should i looked or post?

As

What do you mean by "port 443 is not the issue" - have you tried to start your service with the SSL Connector using 8443 (you have to reconfigure the HTTP Connector redirectPort too). Is this working or not?

What do you mean be "nothing works" - what is the browser telling, can you get your certificate?

@Logs: confluence\data\logs\atlassian-confluence.log --> Might be a huge file, so log if there are any exceptions or errors

HTH, Sabine

Hi All,

Now i have manged to start the service with https://localhost:8090but cannot access https://localhost:8443/

Yes. redirect port: 8443

<Connector port="8443" maxHttpHeaderSize="8192"
                   maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
                   enableLookups="false" disableUploadTimeout="true"
                   acceptCount="100" scheme="https" secure="true"
                   clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
                   URIEncoding="UTF-8" keystorePass="changeit"/>
			   keystoreFile="C:\Program Files\Atlassian\Confluence\jre\lib\security/cacerts"

This keystorefile location is correct?

So we we cannot redirect to https? Any steps to troubleshoot?

As

What does the tomcat logs says when you start up the application? Are you getting any binding exception on port 8443?

HI, Create the support Request Reference: CSP-127923 but still couldn't find the solutions?

two days sending emails...

As

  1. Where is the tomcat logs?
    • <confluence-install>/logs/catalina.out
    • <confluence-home>/logs/atlassian-confluence.out

Thanks all sorted

0 vote

Hey Asela,

We could see that the last comment from Atlassian was related to pointing to an expert in order to configure the TMG 2010, right? Given that, can you share which solution have you searched, so if other users face the same behaviour, we can take a look at this answers post for reference? :)

Cheers,

Giu

Running confluence over ssl or https .http://youtube.com/watch?v=1FJjdaeh-eY

Suggest an answer

Log in or Sign up to answer
Atlassian Community Anniversary

Happy Anniversary, Atlassian Community!

This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.

Read more
Community showcase
Kesha Thillainayagam
Posted Apr 13, 2018 in Confluence

We want to hear how your non-technical teams are using Confluence!

Hi Community! Kesha (kay-sha) from the Confluence marketing team here! Can you share stories with us on how your non-technical (think Marketing, Sales, HR, legal, etc.) teams are using Confluen...

872 views 21 10
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you