I followed this tutorial and everything worked, except the new certificate only updated on the default port and not port 8443. How can I fix this? The sites are cicd.shelter-ent.app and cicd.shelter-ent.app:8443.
EDIT: I took over this server from someone else and am not sure how they configured everything. A few months ago, the SSL on the 8443 server running Jenkins expired.
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Click below to sign up and get $200 of credit to try our products over 60 days!
Hi there @jmudse55,
Installing a certificate for Jenkins is a bit different compared to a standard web server like Apache or Nginx, there are a few things that you need to do.
First, you need to obtain a new valid SSL certificate for the domain name in question and get the certificate files:
After that you need to convert the certificate into a
.pfxformat, you can either use a tool like
opensslor use the SSL Shopper converter tool instead:
After you have the
.pfxfile you need to convert it to JKS format. To do that, you need to have JDK installed and run the following command:
jenkins.jksfile into the
/etc/jenkins/directory and make sure that it has secure permissions:
Once this is done edit the Jenkins config:
There update the path to the new file and the new password:
Finally, restart Jenkins so that it could read the new file.
The configuration described in @bobbyiliev’s answer is the first one you should check. Besides that, you should consider configuration where Apache server acts as reverse proxy for Jenkins. To check it, run the command:
The result similar to that
indicates that Apache serves reverse proxy for Jenkins, and you can follow the description below :)
I guess there are different virtual hosts (vhosts) for ports 443 and 8443 defined in your Apache configuration. It is very likely they are in different config files. Try to look for them with that command:
These vhosts config files should contain the directives pointing to the certificate files, e.g.
Copy the directives from 443 vhost and replace with them corresponding directives in 8443 vhost. Restart Apache service:
Let us know how it works.