Using Certificates for mTLS in Jira Server/ Data Center
To use two-way SSL authentication (mTLS), zAgileConnect can send a certificate with every callout to Jira Server or Data Center, this certificate could be either generated in Salesforce or signed by a certificate authority (CA). Sending a certificate enhances security because the server where Jira is hosted receives the certificate and can use it to authenticate the request against its keystore.
To enable two-way SSL authentication for zAgileConnect:
Make sure that the Jira Server or Data Center server is configured to accept (and require) the certificate. This process depends on the type of configuration you use in front of your Jira (reverse proxy, load balancer, etc).
Configure the certificate name in zAgileConnect (requires version 1.14.14).
Configure the certificate name in zAgileConnect
To configure the certificate name in zAgileConnect a record needs to be created in zsfjira__ZExtended_Settings__c object with the following fields and values:
zsfjira__PropertyKey__c: MTLS_CERT
zsfjira__Text_Value__c: <Certificate API Name>
For example in Anonymous Apex use the following code snippet to insert the record:
zsfjira__ZExtended_Settings__c setting = new zsfjira__ZExtended_Settings__c(
zsfjira__PropertyKey__c = 'MTLS_CERT',
zsfjira__Text_Value__c = '<Certificate API Name>'
);
insert setting;If the record already exists and you need to update it, use the following code snippet instead:
zsfjira__ZExtended_Settings__c existingSetting = [ SELECT Id FROM zsfjira__ZExtended_Settings__c WHERE zsfjira__PropertyKey__c = 'MTLS_CERT' LIMIT 1 ];
existingSetting.zsfjira__Text_Value__c = '<Certificate API Name>';
update existingSetting;Replace <Certificate API Name> with the certificate name generated in Step 1.
Another example using Workbench:
Navigate to Data > Insert, select the
zsfjira__ZExtended_Settings__cobject, and click Next.Enter
MTLS_CERTin thezsfjira__PropertyKey__cfield.Enter the certificate name in the
zsfjira__Text_Value__cfield.Confirm the insert.
