It's not a secret anymore!
The moose likes Tomcat and the fly likes How to Enable SSL on Tomcat 7 on Linux? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » Tomcat
Bookmark "How to Enable SSL on Tomcat 7 on Linux?" Watch "How to Enable SSL on Tomcat 7 on Linux?" New topic

How to Enable SSL on Tomcat 7 on Linux?

James Dekker
Ranch Hand

Joined: Dec 09, 2006
Posts: 221
Am using JDK 1.6, tomcat 7.0.32, and Red Hat Linux.

I need help setting up SSL on my local tomcat instance.

After looking at the instructions on the official tomcat 7 website:

I followed the directions like this:

(1) cd $CATALINA_HOME/conf

(2) Create a certificate and store it in a new key store.

(3) Uncomment the SSL connector configuration in Tomcat's conf/server.xml, specifying your key store file and password.

(4) Export the certificate from the key store.

When I tried to (which would have been Step # 5) import the certificate into the trust store.

I get the following prompt for my password (after which I entered in "mypassword"):
Enter keystore password:

(I disregarded this step by the way because I found it on Google but not on the official Tomcat7-SSL-Howto documentation - please let me know if its necessary).

My full server.xml file (located under $CATALINA_HOME/conf):

Tomcat's server output:

When I go to my bash shell and type this in:

I get the following error output:

Am I missing a step here?

I just want to enable SSL on Tomcat 7 and test it using curl.

Would appreciate it if someone could point me in the right direction.

Thanks for taking the time to read this.
Tim Holloway
Saloon Keeper

Joined: Jun 25, 2001
Posts: 17410

I recommend using an absolute path for your keystore location.

Also, this message:

Cannot be ignored.

An IDE is no substitute for an Intelligent Developer.
K. Gil
Ranch Hand

Joined: Apr 29, 2011
Posts: 75

> keytool error: Keystore was tampered with, or password was incorrect

Java's default cacerts password is "changeit"
I agree. Here's the link:
subject: How to Enable SSL on Tomcat 7 on Linux?
It's not a secret anymore!