Using HTTPS to access TeamCity server

This document describes how to configure various TeamCity server clients to use HTTPS for communicating with server. We assume that you already configured HTTPS in you web server. See how to do this for Tomcat here: http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html.

If you certificate is valid (i.e. it was signed by well known Certificate Authority like Verisign) then TeamCity clients should work with HTTPS without additional configuration. All you have to do is to use https:// links to the TeamCity server instead of http://.

If certificate is not valid:

To enable HTTPS connections from TeamCity Visual Studio plugin and Tray notifier point your Internet Explorer to the TeamCity server using https:// URL and import the server certificate into the browser. After that Visual Studio plugin and Tray notifier should be able to connect by HTTPS.

To enable HTTPS connections from Java clients store server certificate into a file and then import it into the corresponding Java keystore using keytool program.

For build agent import certificate using the following command: keytool -importcert -file <cert file> -keystore <agent installation path>/jre/lib/security/cacerts

For IntelliJ IDEA plugin: keytool -importcert -file <cert file> -keystore <path to JDK used by IntelliJ IDEA>/jre/lib/security/cacerts

For Eclipse plugin: keytool -importcert -file <cert file> -keystore <path to JDK used by Eclipse>/jre/lib/security/cacerts