Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
Community Members
Community Events
Community Groups

SSL error: Public keys in reply and keystore don't match

Hi Folks,

I am trying SSL implementation using apache tomcat.

There are 3 certificates. root.crt, intermediate.crt and CA.crt

I have imported root and intermediate certificates using following commands:

keytool -import -alias rootCA -keystore /jira/jira-home-7.12.1/jira.jks -trustcacerts -file root.crt

keytool -import -alias intermediateCA -keystore /jira/jira-home-7.12.1/jira.jks -trustcacerts -file intermediate.crt

When third certificate is imported using command:

keytool -import -alias jira -keystore /jira/jira-home-7.12.1/jira.jks -file CA.crt

An error is thrown as:

Public keys in reply and keystore don't match

How can I resolve the issue. It needs certificate to be added in the truststore.

I have tried with a command :

keytool -import -keystore /jira/jira-installation-7.12.1/jre/lib/security/cacerts -file root.crt -alias rootCA

but it didn't help.



2 answers

0 votes

How did you solve this ? @Madhura sarwade 

0 votes
Artur Moura Atlassian Team Jun 26, 2020

Hi Madhura, 

I understand that you want setup SSL to your Jira instance, the error Public keys in reply and keystore don't match is caused by generating a certificate with a different key pair. With that in mind, you need to generate it again but using the same original key pair to avoid this error. 

On the page Running Jira over SSL or HTTPS, you can follow all necessary steps to accomplish that.


Artur Moura

Suggest an answer

Log in or Sign up to answer