Running Confluence Over SSL (HTTPS)

HI All,

Follow this https://confluence.atlassian.com/display/DOC/Running+Confluence+Over+SSL+or+HTTPS

now i cannot restart the services?

Any idea?

AS

8 answers

This widget could not be displayed.

Hi,

can you provide more details to the changes you made? Version you are using? server.xml etc. Any log file available. For example - the connector might not start because of port already in use by another process.

Thx, Sabine

This widget could not be displayed.

HI,

<Server port="8000" shutdown="SHUTDOWN" debug="0">
    <Service name="Tomcat-Standalone">
        <Connector className="org.apache.coyote.tomcat4.CoyoteConnector" port="8090" minProcessors="5" maxProcessors="75"
                   enableLookups="false" redirectPort="443" acceptCount="10" debug="0" connectionTimeout="20000"
                   useURIValidationHack="false" URIEncoding="UTF-8" keystorePass="changeit"
                   <Engine name="Standalone" defaultHost="localhost" debug="0">
            <Host name="localhost" debug="0" appBase="webapps" unpackWARs="true" autoDeploy="false">

                <Context path="" docBase="../confluence" debug="0" reloadable="false" useHttpOnly="true">
                    <!-- Logger is deprecated in Tomcat 5.5. Logging configuration for Confluence is specified in confluence/WEB-INF/classes/log4j.properties -->
                    <Manager pathname="" />
                </Context>
            </Host>

        </Engine>

        <!--
            To run Confluence via HTTPS:
             * Uncomment the Connector below
             * Execute:
                 %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows)
                 $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA  (Unix)
               with a password value of "changeit" for both the certificate and the keystore itself.
             * Restart and visit https://localhost:8443/

             For more info, see http://confluence.atlassian.com/display/DOC/Adding+SSL+for+Secure+Logins+and+Page+Security
        -->

        <Connector port="443" maxHttpHeaderSize="8192"
                   maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
                   enableLookups="false" disableUploadTimeout="true"
                   acceptCount="100" scheme="https" secure="true"
                   clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
                   URIEncoding="UTF-8" keystorePass="changeit"/>
				   keystoreFile="C:\Program Files\Atlassian\Confluence\jre\lib\security/cacerts"/>
    </Service>
</Server>

Hi,

ok, you are using the standard SSL port 443. Is this port free (no Apache or other process using this port). Can you start the server if you try to use 8443? Just to check if it is an port issue.

HTH, Sabine

According to issues triggered by the certificate please check if you have one of the following exceptions in your Confluence/Tomcat Log:

http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html#Troubleshooting

HTH, Sabine

This widget could not be displayed.

HI

Very new to Conflunce and now i can start the service after i copy back from the backup.

so port 443 is not the issue. but when i go to the https://conflunce.mydomain.comnothing works.

also my ssl certificate is wildcard certificate *.externaldomain.com .

which log file should i looked or post?

As

What do you mean by "port 443 is not the issue" - have you tried to start your service with the SSL Connector using 8443 (you have to reconfigure the HTTP Connector redirectPort too). Is this working or not?

What do you mean be "nothing works" - what is the browser telling, can you get your certificate?

@Logs: confluence\data\logs\atlassian-confluence.log --> Might be a huge file, so log if there are any exceptions or errors

HTH, Sabine

This widget could not be displayed.

Hi All,

Now i have manged to start the service with https://localhost:8090but cannot access https://localhost:8443/

Yes. redirect port: 8443

<Connector port="8443" maxHttpHeaderSize="8192"
                   maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
                   enableLookups="false" disableUploadTimeout="true"
                   acceptCount="100" scheme="https" secure="true"
                   clientAuth="false" sslProtocol="TLS" SSLEnabled="true"
                   URIEncoding="UTF-8" keystorePass="changeit"/>
			   keystoreFile="C:\Program Files\Atlassian\Confluence\jre\lib\security/cacerts"

This keystorefile location is correct?

So we we cannot redirect to https? Any steps to troubleshoot?

As

What does the tomcat logs says when you start up the application? Are you getting any binding exception on port 8443?

HI, Create the support Request Reference: CSP-127923 but still couldn't find the solutions?

two days sending emails...

As

This widget could not be displayed.
  1. Where is the tomcat logs?
    • <confluence-install>/logs/catalina.out
    • <confluence-home>/logs/atlassian-confluence.out
This widget could not be displayed.

Thanks all sorted

How did you fix?

This widget could not be displayed.

Hey Asela,

We could see that the last comment from Atlassian was related to pointing to an expert in order to configure the TMG 2010, right? Given that, can you share which solution have you searched, so if other users face the same behaviour, we can take a look at this answers post for reference? :)

Cheers,

Giu

This widget could not be displayed.

Running confluence over ssl or https .http://youtube.com/watch?v=1FJjdaeh-eY

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Monday in Confluence

Why start from scratch? Introducing four new templates for Confluence Cloud

Hi my Community friends!  For those who don't know me, I'm a product marketer on the Confluence Cloud team - nice to meet you! For those of you who do, you know that I've been all up in your Co...

464 views 6 6
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you