This was resolved by Atlassian Support. I have two servers, JIRA and CONFLUENCE, and they both needed each other's SSL certificates imported into their respective Java keystores. The instructions for doing this are here: https://confluence.atlassian.com/jira/connecting-to-ssl-services-117455.html
I followed the command-line instructions, as these are headless servers; the import worked straight away (though you will likely need to restart the JIRA/Confluence services or servers to force the change). The two commands to run in those instructions are as follows, and you must do this on both servers. For example, if I'm on server JIRA and need to connect to server CONFLUENCE, I need to run the following command to obtain the CONFLUENCE SSL cert (you would, of course, replace confluence.com with the server name representing your Confluence installation):
openssl s_client -connect confluence.com:443 < /dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > public.crt
Then, run this command to import the certificate (this example implies RedHat/CentOS, and you need to do this as root or with command sudo):
sudo /opt/atlassian/jira/jre/bin/keytool -import -alias confluence -keystore /opt/atlassian/jira/jre/lib/security/cacerts -file /home/user/public.crt
You will be prompted for your root password and/or the Java keystore password (the default changeit will likely work).
You will need to do the same on the Confluence server, reversing the references and commands above. Once complete, restart the servers (or services) and that will allow you to reconnect the application linking using an Apache SSL proxy.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.