Unrecognized SSL message, plaintext connection?
Platform notice: Server and Data Center only. This article only applies to Atlassian products on the Server and Data Center platforms.
Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Symptoms
The following appears in the atlassian-crowd.log:
2014-04-21 11:43:31,503 http-bio-8095-exec-4 INFO [service.soap.client.SecurityServerClientImpl] Existing application token is null, authenticating ...
2014-04-21 11:43:31,517 http-bio-8095-exec-4 ERROR [xfire.transport.http.HttpChannel] javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
2014-04-21 11:43:31,524 http-bio-8095-exec-4 ERROR [crowd.console.action.Login] Failed to connect to the authentication server, please check your crowd.properties
org.springframework.security.authentication.AuthenticationServiceException: Could not invoke service.. Nested exception is org.codehaus.xfire.fault.XFireFault: Couldn't send message.
Caused by: org.codehaus.xfire.XFireRuntimeException: Could not invoke service.. Nested exception is org.codehaus.xfire.fault.XFireFault: Couldn't send message.
Caused by: org.codehaus.xfire.fault.XFireFault: Couldn't send message.
Caused by: javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
Cause
Java 7 introduced SNI support which is enabled by default. Certain misconfigured servers send an "Unrecognized Name" warning in the SSL handshake which is ignored by most clients, except for Java.
Resolution
- Add the following to the JAVA_OPTS environment variable:
-Djsse.enableSNIExtension=false
- Restart your Crowd instance.
Last modified on Dec 31, 2018
Powered by Confluence and Scroll Viewport.