We successfully added the new properly formatted certificates to the JKS keystore, which includes the CA issuer the cert for the service, and the private key to Fisheye. Upon validation we were able to validate our results by running Openssl -s_client on port 6443 and view the certifications associated with the web site and it validates correctly. However when we attempt to use Firefox to access the website we receive an “No Cipher Over Lap” error.
Could the "No Cipher Over Lap" error be caused by Firefox not having the inability to negotiate common ciphers with the Fisheye Jette server? We suspect this is due to Fisheye Jette server not supporting operation in FIPS mode when using non-self-signed certs, but we aren't sure.
Interestingly enough, we can use the same firefox browser on the same machine to connect to the fisheye service on the TLS port when the keystore contains a self-signed certificate, with both the client and the server in FIPS mode.
The current version of Fisheye/Crucible 4.8.0 running on Red Hat Enterprise 7.9 for the OS.
Please let us know if you have seen this problem before and what steps you took to resolve this issue?