Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Server has a weak ephemeral Diffie-Hellman public key

Jirong Hu
Jirong Hu September 4, 2015

Our users are getting this message after upgrade Chrome to v45, and can't access JIRA (v5.2.4). This link from Google explains the reason: https://www.chromium.org/administrators/err_ssl_weak_server_ephemeral_dh_key?&hl=en-US

What's the exact procedure to fix this problem in JIRA?

Thanks

Jirong

Answer
Watch
Like Be the first to like this
312 views

1 answer

1 accepted

0 votes
Answer accepted
no_longer_in_sudoers_file
no_longer_in_sudoers_file
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
September 4, 2015

This issue is not JIRA, but is instead the SSL/TLS certificate used to secure HTTPS connections.

You will need to re-generate your certificate with a larger key size (e.g. greater than 2048-bits rather than smaller sizes) and have the Certificate Authority (CA) sign the certificate.

View More Comments
Nathan Curry
Nathan Curry October 21, 2015

This is not actually true. There are configurations that need to be changed in the Tomcat server.xml in regards to the cyphers and protocols used for the connection. I was able to resolve the issue with the following instructions without changing my certificate: https://confluence.atlassian.com/display/JIRAKB/Server+has+a+weak,+ephemeral+Diffie-Hellman+public+key

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events