Server Certificate changed now getting trusted url error

Our MIS group changed the server SSL certificate onn production and we are now getting URL error in Trusted Connection with his URL:
Where does Wiki/Conflunce get the application ID in the URL. is it the certificate id in cache? If so how doe we clear it besides the browser?
We rebuilt the trusted connection in application links but still get system error. This was advised by support in another record.

Clearing browser ssl cache did not change the application id. What else needs to replace the application ID

4 answers

1 accepted

agree with alex:

KP11 first off all you need to find out wich JRE your applications (confleunce, jira) are using.

by default boths bring their own JRE (i.e. sth like /opt/atlassian/jira/jre & /opt/atlassian/confluence/jre)

just simply run a "ps axf|egrep '(jira|confluence)'"

which will show you the complete cmd line how the apps are started including JAVA paths.

next you will need to import the new certificate i.e. like this:

keytool -import -alias <you name it> -file <path to certfile> -keystore /opt/atlassian/jira/jre/lib/security/cacerts

do the same for confluence and restart boths apps for changes to take effect.

i believe this should be it

HINT: i run 3 atlassian apps on one host so i configured all of them to use a centralized (own installation) JAVA version. so only one keystore needs to be updated incase of any certificate change

0 vote
Peter Koczan Atlassian Team Jun 18, 2013


Not sure if it will help in this case, but you could give it a try to re-initalize the keystore using the JSP mentioned in the following article:

Kind regards,


The doc is for version 3.x we are on 4.3.3

Can you check if you "client" app have the new server certificate imported into it's cacerts keystore?

There are no certs in the Confluence or Java directories. CACERTS is in Java


cacerts, as far as I know, is a keytore that Java uses to store trusted certs (like the CA). One common solution is importing the SSL certificate that is using your server into the cacerts in the JDK used by confluence. This way, you are telling confluence that this certificate is 100% trusted.

Suggest an answer

Log in or Join to answer
Community showcase
Louis De Jaeger
Posted Thursday in Off-topic

Friday fun: your best joke

Hi all Lets make this Friday fun really fun and post one (or more) of your best jokes! The joke can be about an Atlassian product, or just a really fun joke you want to share! I’m not the best j...

189 views 12 3
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you
Atlassian Team Tour

Join us on the Team Tour

We're bringing product updates and pro tips on teamwork to ten cities around the world.

Save your spot