Not able to set SSL for Crowd
Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.
Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Symptoms
The following appears in the atlassian-crowd.log:
1
2
3
4
5
6
014-03-26 11:43:31,472 http-bio-8095-exec-4 ERROR [xfire.transport.http.HttpChannel] javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
2014-03-26 11:43:31,474 http-bio-8095-exec-4 ERROR [crowd.integration.springsecurity.CrowdSSOAuthenticationProcessingFilter] Unable to unset Crowd SSO token
org.codehaus.xfire.XFireRuntimeException: Could not invoke service.. Nested exception is org.codehaus.xfire.fault.XFireFault: Couldn't send message.
2014-03-26 11:43:31,524 http-bio-8095-exec-4 ERROR [crowd.console.action.Login] Failed to connect to the authentication server, please check your crowd.properties
Cause
Java 7 introduced SNI support which is enabled by default. Certain misconfigured servers send an "Unrecognized Name" warning in the SSL handshake which is ignored by most clients, except for Java.
Resolution
Add the following to the JAVA_OPTS environment variable:
1
-Djsse.enableSNIExtension=false
Restart your Crowd instance.
Was this helpful?