Installation of SSL Certificate into Tomcat — Technote Article

Entrust Certificate Services Support Knowledge Base

Audience: General
Last Modified: 2008-09-29 12:36:43.0

TN 7583 - Installation of SSL Certificate into Tomcat

Question

How do install my certificate into Tomcat

Answer

1. Setup your attributes in your server.xml file - should look like this:

</Connector>

2. Startup Tomcat either from the Start Menu in Windows or the Command line by going to your Tomcat Bin directory and typing in Startup.bat or Catalina run

Confirm you can use the self signed cert by typing in https://locahost

Go into the Tomcat Admin screen https://localhost/admin/index.jsp

Click on Connector (443) under the Tomcat Standalone Service
Confirm you are using the keystore location and filename you have specified.

Keystore Filename: C:\.mykeystore

3. Run the import command

keytool -import -alias ralias -keystore your_keystore_filename

Important:
! Please use the SAME alias when creating your CSR and installing your certificate that you use to create your self-signed keystore.

As an example: C:\>PROGRA~1\JAVA\J2RE14~1.2_0\BIN>keytool -import -alias ralias -keystore c:\15keystore -trustcacerts -file c:\certnoroot.txt

Enter keystore password: password

You should receive the message:
"Certificate Reply Was Installed Into Keystore"

4. Stop and Start Tomcat

Startup Tomcat either from the Start Menu in Windows or the Command line by going to your Tomcat Bin directory and typing in Startup.bat or Catalina run

5. Verify your SSL connection

Startup Tomcat and hit https://localhost:port As an example port 443 is specified in the server.xml file so:

https://localhost

the browser will assume port 443.

Affected Products:

Entrust Certificate Services Enhanced Service Account Version Not Applicable Language Not Applicable Platform Not Applicable

SSL Certificates

Extended Validation (EV)

Advantage SSL

Standard SSL

Unified Communications

Code Signing Certificates

Adobe CDS