Sonarqube https and certificates

ssl

(Anders Grund) #1

Hello,
We are using a company trusted root CA certifcate for our sonarqube server.
we can’t run sonar build analysis without adding the sonarqube certificate to the java truststore.
(We have pretty many buildservers and multiple java versions), so it’s some administration

If we have an external trusted CA certificated from i.e godaddy.
will our buildserver then be able to connect with https to sonar server, without adding the sonar server cert to the java trust store ?
/Anders

Regards
/Anders


(Eugene Dubrovka) #2

We have a wildcard certificate from godaddy with *.dev.domain.com. Sonarqube is reversed proxied with https://sonar.dev.domain.com:443 (with valid certificate) to http://vm-sonar.company.intra:9000. And we have no issues accessing sonarqube over https from anywhere: dev machines, maven builds, browsers, docker images, etc.