How to setup SSL/HTTPS access in Confluence Standalone
This section describes how to enable secure access on a Confluence Standalone instance (running Tomcat 4.1.30). The configuration details may be slightly different for newer versions of Tomcat and different application servers.
 | Users of Confluence 2.2.0 and newer Please follow this guide instead. |
Create an SSL certificate using keytool
Before configuring SSL, an SSL certificate must be created. If you have already configured one, you can skip this step.
Windows configuration
On Windows, perform the following at the command prompt:
Unix/Linux configuration
On Unix/Linux, perform the following at the command prompt:
This will also apply to MacOS X systems.
Some questions will be asked, including a password for the certificate (the default is 'changeit'). Please note down what this is, as it will be used in the next step.
Modify the conf/server.xml file
In the confluence directory, open the conf/server.xml file and insert one of the following just after the closing </Engine> tag:
For Tomcat 4 (Confluence 2.1.x and below):
For Tomcat 5.5 (Confluence 2.2 and above):
Please note that the above configuration is included in the Confluence Standalone conf/server.xml file, and only needs to be uncommented.
Change #CERT_PASSWORD# to the password you entered for the certificate when you generated it.
|
By default, Tomcat will look in C:\Documents and Settings\\#CURRENT_USER#\.keystore (Windows) or ~/.keystore (Unix) for the certificates. If you have previously generated an SSL certificate and it is located in a different location, you will need to add an additional attribute in the On Tomcat 4 change the On Tomcat 5.5 change the Also replace the #KEYSTORE_LOCATION# and #CERT_PASSWORD#. |
After that, restart Tomcat and access your instance on https://host.domain:8443/.
For more detailed information on setting up SSL with Tomcat (including additional configuration options), have a look at Tomcat 4 SSL Howto or Tomcat 5.5 SSL Howto.
Labels
