• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

How to Enable SSL on Tomcat 7 on Linux?

 
James Dekker
Ranch Hand
Posts: 221
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Am using JDK 1.6, tomcat 7.0.32, and Red Hat Linux.

I need help setting up SSL on my local tomcat instance.

After looking at the instructions on the official tomcat 7 website:

http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html

I followed the directions like this:

(1) cd $CATALINA_HOME/conf

(2) Create a certificate and store it in a new key store.



(3) Uncomment the SSL connector configuration in Tomcat's conf/server.xml, specifying your key store file and password.



(4) Export the certificate from the key store.



When I tried to (which would have been Step # 5) import the certificate into the trust store.



I get the following prompt for my password (after which I entered in "mypassword"):
Enter keystore password:



(I disregarded this step by the way because I found it on Google but not on the official Tomcat7-SSL-Howto documentation - please let me know if its necessary).

My full server.xml file (located under $CATALINA_HOME/conf):


Tomcat's server output:



When I go to my bash shell and type this in:



I get the following error output:



Am I missing a step here?

I just want to enable SSL on Tomcat 7 and test it using curl.

Would appreciate it if someone could point me in the right direction.

Thanks for taking the time to read this.
 
Tim Holloway
Saloon Keeper
Pie
Posts: 18212
53
Android Eclipse IDE Linux
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I recommend using an absolute path for your keystore location.

Also, this message:


Cannot be ignored.
 
K. Gil
Ranch Hand
Posts: 75
Java Linux Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
> keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect

Java's default cacerts password is "changeit"
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic