Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Jenkins integration with RTC

Questions
Tags
Users
Badges
N. VD
(842734) edited
Jun 17 '16, 12:49 p.m.
I'm trying to integrate with Jenkins from RTC.
My Jenkins server is running on a SSL.

When clicking the 'Test Connection' button in Eclipse (Created a Build Engine to Jenkins), i'm getting this error:
Connection test requested.
Connecting to: https://jenkins-itproject.rhcloud.com/
Exception: javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.h: PKIX path building failed: java.security.cert.CertPathBuilderException: PKIXCertPathBuilderImpl could not build a valid CertPath.; internal cause is: 
java.security.cert.CertPathValidatorException: The certificate issued by CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US is not trusted; internal cause is: 
java.security.cert.CertPathValidatorException: Certificate chaining error
Test connection FAILED!


So i browsed to the URL and downloaded the certificates as DER files & added to the keystore:
(repeated it for root and intermedate CA's):
keytool -importcert -alias rhcloudroot -keystore /opt/IBM/JazzTeamServer/server/liberty/servers/clm/resources/security/ibm-team-ssl.keystore  -storepass ibm-team -file /opt/certs/rhcloud.cer

  • Per test i also ran the ikeyman script as described here:
    https://jazz.net/help-dev/rational-insight/topic/com.ibm.rational.raer.install.doc/topics/t_int_ssl_reportsrv_jazz_ri.html

  • I also tried this the --autoAcceptSigner as described here, but the server wouldn't start:
    https://www.ibm.com/support/knowledgecenter/SSAW57_8.5.5/com.ibm.websphere.wlp.doc/ae/twlp_enable_ssl_liberty_client_container.html

Still getting the same error... any toughs?

0 votes

2 answers
4,602 views
0 votes

Accepted answer

Permanent link
Natarajan Thirumeni
(2981131) Jun 15 '16, 5:51 a.m.
We've had a  same issue. You need to ensure the JRE cacerts keystore has Jenkins server certificates. We are able to get past the connection issue. Please check and if you're running into issue feel free to open a PMR with IBM support team.
N. VD selected this answer as the correct answer

1 vote

One other answer

Permanent link
Sridevi Sangaiah
JAZZ DEVELOPER (59179) edited
Apr 02 '16, 2:32 a.m.
Hi,

Just want to confirm if you are importing and installing the certificates to the jre that is used to run the RTC client.

Thanks,
Sridevi

0 votes

Comments
N. VD
Apr 04 '16, 3:26 a.m.

Hi Sridevi, 


Thanks for your answer,

I've added the root certificate in all .keystore & cacert files i found on my server (Ubuntu Linux). in most of the files, the certificate was already added by default. My client is also present on my server machine & i'm testing from there.

Still no luck.

Lakshmi Narasimhan T V
JAZZ DEVELOPER Apr 04 '16, 6:27 a.m.

Could you check whether importing your certificate into the jre used by the server solves the issue?

N. VD
Apr 06 '16, 3:40 p.m.

 Done that, still same error

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 6,122
× 562
× 151

Question asked: Apr 01 '16, 10:28 a.m.

Question was seen: 4,602 times

Last updated: Jun 17 '16, 12:49 p.m.

Confirmation Cancel Confirm