Connection failed: "XMPPERROR establishing connection with Server" when connecting with mobile clients.

Still need help?

The Atlassian Community is here for you.

Ask the community

Platform notice: Server and Data Center only. This article only applies to Atlassian products on the Server and Data Center platforms.

Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

This is for an outdated version of Hipchat Server

 This article applies to a version of Hipchat Server which will be deprecated soon. After that period the version will no longer be supported.

When will my version be deprecated?

The following versions have been deprecated:

  • Hipchat Server 1.3 (EOL Date: Aug 17, 2017)
  • Hipchat Server 2.0 (EOL Date: Jun 17, 2018)
  • Hipchat Server 2.1 (EOL Date: Dec 8, 2018)

The following version will be deprecated soon:

  • Hipchat Server 2.2 (EOL Date: May 30, 2019)

You can read more about Atlassian's End of Life policy here.

You should upgrade to a more recent version of Hipchat Server as soon as you can to take advantage of new features, and security and bug fixes.

Problem

When using the mobile clients (iOS/Android) with 'Require Certificate Authentication' checked, you receive the following error:

Connection failed "XMPPERROR establishing connection with server"

Cause

This can be caused by:

  • Port 5223 not being opened or being blocked by another service/firewall.
  • No SSL intermediate certificate installed in the certificate chain.
  • Incorrect SSL intermediate certificates installed in the chain.
  • Self signed certificate.

Resolution

  • Verify that port 5223 is fully open.
  • Make sure that you have a trusted SSL certificate chain installed.
  • Make sure that the correct SSL intermediate certificate is installed in the SSL certificate chain. Some vendors use multiple intermediates to tie the root CA certificate to the primary certificate. 
  • Run openssl s_client -connect your-companies-FQDN.com:5223 against your Server instance and if you see verify error:num=27:certificate not trusted and verify error:num=21:unable to verify the first certificate, then the certificate chain isn't trusted. Contact your CA vendor for the intermediate certificate and install it in Hipchat Server along with your primary certificate and your private key.

Last modified on Jan 19, 2018

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.