Security warning when accessing JIRA in Chrome

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Summary

Problem

When accessing Jira in Chrome, the following security warning is being shown for the site:

(Auto-migrated image: description temporarily unavailable)

Environment

Jira Data Center

Diagnosis

Environment

  • Using Chrome browser.

  • Other browsers does not show the security warning.

  • Jira is using SSL.

Cause

The certificate used in Jira is signed with SHA-1.

Solution

Workaround

You can click to proceed anyway when accessing Jira, or add the application URL in the security exceptions of the browser.

Resolution

SHA-1 was deprecated in Chrome version 39 and above, as a measure to force sites using a weak cryptography to migrate to better one, as peer of Google Announcement .

In order to resolve this security issue, you should contact your CA and generate a new certificate signed with a better hash.

Updated on April 2, 2025

Still need help?

The Atlassian Community is here for you.