Jira Integration SSL Troubleshooting

Starting October 11, 2024 (Zephyr Enterprise 8.2), the Zephyr Enterprise documentation moved from its current location on Atlassian to a dedicated, standalone Zephyr Enterprise documentation page. Please see: https://support.smartbear.com/zephyr-enterprise/docs/en/zephyr-enterprise/zephyr-administration-guides/system-setup/jira-integration/setting-up-jira-integration/jira-integration-ssl-troubleshooting.html

Problem: If you find this Error while integrating with the Zephyr Enterprise.

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Steps must be followed to Import the Jira certificate to the Zephyr Enterprise Server.

  1. Launch your Jira in the Browser and Download the certificate from the browser.

Screenshot 2024-05-20 at 16.33.24-20240520-110735.png
Screenshot 2024-05-20 at 16.33.38-20240520-110907.png
  1. Give any file name and select Finish. This should export your certificate in a .cer file.

  2. This Jira SSL Certificate must be imported to the JAVA trust store of the Zephyr Enterprise server.

  3. If the instance has more than one Java version installed

    1. To which version the JAVA_HOME path is set

    2. Check which java classpath version is picked up by the Zephyr tomcat application from the thedinc.log

    3. If it is a different version, update the JRE_HOME path in the environment variables and then restart Zephyr.

    4. Please verify whether the Zephyr Tomcat application is picking the right Java classpath version, which is the one JAVA_HOME is set to.

  4. Navigate to the jre/bin

keytool -import -alias <new_unique_alias> -file <any_filename_here_from_above> -keystore <path/to/truststore>

The keytool is provided with the Java Runtime Environment (JRE). If you're using a product with a bundled JRE, you can find keytool in <product-install-path>/jre/bin/keytool.

Please import the JIRA certificate to both the JDK and JRE location of the Zephyr Server:

  1. Example:

    a) C:\Program Files\Java\jdk1.8.0_xxx\jre\lib\security location
    b) C:\Program Files\Java\jre1.8.0_xxx\lib\security location

    After importing the JIRA certificate to the Zephyr Server's Java truststore, please restart the Zephyr Service. Then, proceed with testing the JIRA integration.

 

Steps must be followed to Import the Zephyr certificate to the Jira Server.

  1. Launch your Zephyr in the Browser and Download the certificate from the browser Same as shown above.

  2. Zephyr certificate should be imported to the Java truststore of their Jira Server.

  3. Open the terminal -> go to Jira Java location Example:- “/opt/atlassian/jira/jre/lib/security” location.

  4. Navigate to the jre/bin

    keytool -import -alias <new_unique_alias> -file <any_filename_here_from_above> -keystore <path/to/truststore>
  5. Once the certificate is imported to /opt/atlassian/jira/jre/lib/security folder under cacerts location, restart JIRA Service.