Using HTTPS to access TeamCity server

Using HTTPS to access TeamCity server 

This document describes how to configure various TeamCity server clients to use HTTPS for communicating with the server. We assume that you have already configured HTTPS in your web server. See how to do this for Tomcat here: http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html.

If your certificate is valid (i.e. it was signed by a well known Certificate Authority like Verisign), then TeamCity clients should work with HTTPS without any additional configuration. All you have to do is to use https:// links to the TeamCity server instead of http://.

If your certificate is not valid:

• To enable HTTPS connections from TeamCity Visual Studio plugin and Tray notifier, point your Internet Explorer to the TeamCity server using https:// URL and import the server certificate into the browser. After that Visual Studio plugin and Tray notifier should be able to connect by HTTPS.

• To enable HTTPS connections from Java clients, save server certificate to a file, and then import it into the corresponding Java keystore using keytool program. By default, Java keystore is protected by password: changeit

• For Build Agent import certificate, use the following command: {{keytool -importcert -file <cert file> -keystore <agent installation path>/jre/lib/security/cacerts}}

• For IntelliJ IDEA plugin: {{keytool -importcert -file <cert file> -keystore <path to JDK used by IntelliJ IDEA>/jre/lib/security/cacerts}}

• For Eclipse plugin: {{keytool -importcert -file <cert file> -keystore <path to JDK used by Eclipse>/jre/lib/security/cacerts}}