Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Next challenges

Recent achievements

  • Global
  • Personal

Recognition

  • Give kudos
  • Received
  • Given

Leaderboard

  • Global

Trophy case

Kudos (beta program)

Kudos logo

You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.

View group

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Sign up for free Log in
Atlassian Community Hero Image Collage

Upgrade from 6.13 to 7.8.1 broke AD Authentication

phoenyx762
phoenyx762 Oct 23, 2020

Before the upgrade my certs were in the proper keystore. After upgrade AD is busted and I am unable to add certs to cacerts which will allow TLS based connectivity to AD from within confluence. 

The existing documentation for setting up AD authentication is not working with this version of Confluence.

Answer
Watch
Like Be the first to like this
89 views

1 answer

0 votes
Diego
Diego Atlassian Team Nov 02, 2020

Hello @phoenyx762!

As I understand, your active directory authentication is not working as intended. Since we do not have much insight on what is happening.

With this in mind, I would like to ask you a few questions. Here we go:

  1. Are you still facing this behavior?
  2. Is there any warning on screen when you try to authenticate?
  3. Are there errors shown on your Confluence Log file? (You can find the log file under the Confluence home folder.)
  4. Are you still running your previous Confluence version?
  5. Is this your production instance?

Here is some documentation for reference:

Let us hear from you!

View More Comments
phoenyx762
phoenyx762 Nov 02, 2020

 

Thanks Diego... Answers in line below:

  • Are you still facing this behavior?
    • Yes
  • Is there any warning on screen when you try to authenticate?
    • Was unable to authenticate. Checked the "User Directories" area and confluence was unable to poll AD. This appeared to be certificate related.
  • Are there errors shown on your Confluence Log file? (You can find the log file under the Confluence home folder.)
    • Connection test failed. Response from the server:(server name omitted):636; nested exception is javax.naming.CommunicationException: (server name omitted):636 [Root exception is javax.net.ssl.SSLException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty]
  • Are you still running your previous Confluence version?
    • No, This was an in place upgrade
  • Is this your production instance?
    • Test/Lab/Home

This appears to be an issue with Confluence accepting the AD Server Certificate. I has this issue before with an upgrade and used "SSLPlugin 1.0.0" to re-import the certificate unfortunately this does not work any longer with version 7 and the standard way using "keytool -import -alias (server name omitted) -keystore /opt/atlassian/confluence/jre/lib/security/cacerts -trustcacerts -file server.crt" does nothing to correct this to allow Confluence to connect to the AD server via 636.

Like
phoenyx762
phoenyx762 Nov 06, 2020

SSO for Atlassian Data Center update 4.1.1 corrected the issue. 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
DEPLOYMENT TYPE
SERVER
VERSION
7.8.1
TAGS
Community showcase
Brian Keough
Brian Keough
Published in Confluence

Announcing Team Calendars in Confluence Data Center

Hi Community! We're thrilled to share that Team Calendars for Confluence is now a built-in feature for Confluence Data Center releases 7.11 and beyond.  A long time favorite,  Team Cale...

146 views 0 5
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you