Copado backend has 2 static IP addresses. You may need to whitelist them if you have IP restrictions on your Salesforce Settings.
Make sure of the following:
- Session Setting "Enforce login IP ranges on every request" is not enabled.
- Session Setting "Lock sessions to the IP address from which they originated" is not enabled.
Hosted Git Repository (On Premise)
To connect a hosted Git repository behind a firewall you will need to whitelist the Copado IP addresses and open the corresponding port (port 443 for HTTPS, and port 22 for SSH).
For the HTTPS connection to be successful, the SSL certificate must be properly installed and issued by a trusted SSL Certification Authority (not a self-signed SSL Certificate).
If after configuring the SSL, Copado cannot connect to your Git Repository, you can download this jar file in a computer* and execute it on the command line to see if there are any HTTPS connection errors, as follows:
java -jar testHTTPS.jar <a href="https://github.com/" target="_blank">https://github.com</a>
You will need to change https://github.com with your server url (make sure it's an HTTPS url).
If you see a messages "OK. SSL certificate is trusted." then you are good.
Otherwise follow the recommendations done by the program.
If the certificate is not properly installed or java doesn't trust it, you will get an error message like:
Exception in thread "main" javax.net.ssl.SSLException: ......
If this is the case, troubleshoot the error until the connection is successful*.
*Make sure that the machine where the program runs doesn't have any custom certificates installed.
*Copado does not provide support for SSL Certificate installation/configuration or whitelisting IP Addresses in your network.