We purchased a wildcard SSL certificate from GeoTrust. We did the CSR through IIS on a different server than the one that runs Confluence. We then exported the certificate from that Windows server with the private key. We used instructions on GeoTrust's site, on your site, and on other sites, and we cannot figure out how to get Confluence to use the certificate. We've been able to convert the certificate into just about any file type out there, but none of those have worked for us.
What does Confluence require of the certificate? What file type does it need to be (.keystore, .key, .cer, .crt, .pfx)? What pieces need to be in the file (private key, public key, secondary CA cert, primary CA cert)? I don't see anywhere in the server.xml connector that mentions the alias; is an alias even necessary?
I have already contacted GeoTrust about this, and they basically said what we have already figured out: We can do pretty much anything we want with the certificate once it has been exported with the private key, but it depends on the constraints of the program that is trying to use it.
Any help would be greatly appreciated.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.