Sonarqube https and certificates


(Anders Grund) #1

We are using a company trusted root CA certifcate for our sonarqube server.
we can’t run sonar build analysis without adding the sonarqube certificate to the java truststore.
(We have pretty many buildservers and multiple java versions), so it’s some administration

If we have an external trusted CA certificated from i.e godaddy.
will our buildserver then be able to connect with https to sonar server, without adding the sonar server cert to the java trust store ?


(Eugene Dubrovka) #2

We have a wildcard certificate from godaddy with * Sonarqube is reversed proxied with (with valid certificate) to And we have no issues accessing sonarqube over https from anywhere: dev machines, maven builds, browsers, docker images, etc.