Configure Jira site to SSL

Hi Alexis

first of all thanks you,

your solution is not doable due to security dep. demands.

any other solution using our current infrastructure?

thanks

Hi @Eyal Dolev, 

you probably can adapt this kind of architecture to your current infra, Apache was just an example, the same can be achieved with IIS, or nginx. 

What are your security needs for this solution ? 

Hi Alexis

is there any configuration that can be done on the Jira server it self?

we cannot use proxy of any kind.

i found couple of articles about using java keystore but cannot conifgure with our pfx.

can the windows cert authority can be used in the config?

many thanks

E

Hi, 

without using Apache you will need to import SSL certs to Tomcat as described here.

You will probably need to convert your pfx cert to a compatible format, you'll have to check the keytool documentation for this. This page could be useful as well.

Hi Robert

Again thanks for the assistance, is there another friendly way to use our certificates to configure the HTTPS option?

the articles you attched  (the tomcat import)is very unclear.

thanks

Eyal

Hi @Eyal Dolev, 

the Tomcat import is a bit complicated but will provided end to end encryption without the need for additional proxy server. 

I do not know any other way to implement SSL certificates.

--Alexis

ALexis is right - to do SSL "in" Jira, there's only one place to do it - the Tomcat that is running Jira.  Anything else requires more software and a proxy server is in fact easier and faster than doing in the Tomcat, and can be a LOT more user-friendly.  But you still need more software to provide the transport.  There are options other than a proxy, but the proxy is the usual way to do it, as well as easiest.