Using SSL on tomcat
Rule of thunb, don't do it. Put a web server in front of tomcat is a much better set up.Prepare a ca bundle file
Gather all of the CA and intermediate certificates, cat them into a single file. In this example, this file is called cabundle.crtConvert RSA key and x509 cert into PKCS12
openssl pkcs12 -export -in www.domain.com.crt -inkey www.domain.com.key \ -out www.domain.com.p12 -name tomcat -certfile cabundle.crt
You will be asked to input a keystore passphrase. Remember it as you will need it on tomcat's config
Installing certificate on Tomcat
<Connector port="8443" minSpareThreads="5" maxSpareThreads="75" enableLookups="true" disableUploadTimeout="true" acceptCount="100" maxThreads="200" scheme="https" secure="true" SSLEnabled="true" keystoreFile="/somewhere/www.domain.com.p12" keystorePass="BLAHH" keystoreType="PKCS12" />
There are no comments on this page. [Add comment]