Click here for instructions to use a signed certificate.
sudo keytool -genkey -alias tomcat -keyalg RSA -keystore/etc/ssl/certs/java/era_web_console.keystore -storepass password -validity 3650 -keysize 4096
sudo nano /var/lib/tomcat7/conf/server.xml.
and edit the area for connector port as follows:
SSLEnabled="true"
maxThreads="150"
scheme="https"
secure="true"
keystoreFile="/etc/ssl/certs/java/era_web_console.keystore"keystorePass="password"
keyAlias="tomcat"
clientAuth="false"
sslProtocol="TLS"
/>
keytool –list –storetype pkcs12 –keystore keyfilename.pfx –v | grep Alias
keytool –importkeystore –srckeystore keyfilename.pfx –srcstoretype pkcs12 –destkeystore keyfilename.jks –deststoretype jks
sudo nano /var/lib/tomcat7/conf/server.xml
Find the section that says and edit the section to look like this:
protocol="HTTP/1.1"
SSLEnabled="true"
maxThreads="150"
scheme="https"
secure="true"
keystoreFile="location of the newly created .jks file, for example /home/user/keyfilename.pfx"
keystorePass="password"
keyAlias="use the alias you determined in the previous step"
clientAuth="false"
sslProtocol="TLS"
/>
sudo service tomcat7 restart