i've tried several hours to get start with the jire-step plugin and the internal it infrastructure of my company. It has a self-signed root certificate and the Jira server has an normal one signed with it as shown as follows:
. |–LEVEL 2–Jenkins
ROOT - |
. |–LEVEL 2--Jira
First i've had the "unable to find valid certification path" - error for all Jira plugins. After importing the server certificate and their root certificates into the keystore and referenced them in /etc/sysconfig/jenkins this error disappeared.
For now the jira-step plugin has another error: "hostname <domain> not validated". The other Jira Plugin can connect to Jira and i could write comments into several tickets.
I've also imported the certificates into the /etc/ssl/ca-bundle.crt store and openssl can connect successfully with the server. I downloaded the certificate directly via openssl from the Jira server and include it again into the keystore.
I see that the jira ssl-certificate has not a defined subject alternative name (SAN) field. Maybe this is the problem here.
If so, it would be very helpful to introduce an option for disabling or lower ssl checks at least for testing purposal.
I want really use Jira-Step to trigger time-based my jobs. A webhook would be an option, but is not allowed by it security at the moment. This is another story
Thanks for any help.
i see that the tls handshake has been done, but then the session is terminated: