-
Bug
-
Resolution: Fixed
-
Medium
-
25
-
Severity 3 - Minor
-
1
-
Issue Summary
Our Cloud products are not trusting server certificates issued by Sectigo for application links.
Sectigo is a privately held company that offers SSL certificate and computer security products. It was previously known as Comodo and Comodo CA but has since been sold to new owners and changed its name to Sectigo on November 1st, 2018.
Steps to Reproduce
- Try to create an applink with a server instance that uses a certificate issued by Sectigo.
Expected Results
It should trust the certificate.
Actual Results
The following error message is shown:
The remote certificate can't be trusted
Server JIRA may be using a self-signed SSL certificate or a certificate that was issued by a certificate authority that isn't known locally.
Notes
Certificates from Comodo are accepted, as per https://docs.oracle.com/javase/6/docs/technotes/tools/solaris/keytool.html#cacerts
Workaround
Currently there is no known workaround for this behavior. A workaround will be added here when available
We encountered a problem setting up application links (Jira Server - Confluence Cloud) and discovered it was due to our SSL certificate not including the full path of certificates.
Some discussion about this here - after sorting that our server can connect to Atlassian Cloud ok.
https://community.atlassian.com/t5/Jira-Software-questions/Jira-server-do-not-send-intermediate-certificate-So-it-fails-www/qaq-p/1794808