Web Server

Tomcat Keystore Update: How to rebind Tomcat Keystore with a new Certificate

Tomcat

Secure Socket Layer (SSL) is a protocol that provides security for communications between client and server by implementing encrypted data and certificate-based authentication. Technically, the term “SSL” now refers to the Transport Layer ouSecurity (TLS) protocol, which is based on the original SSL specification.

SSL is one of the most common ways of integrating secure communication on the internet, as it is a mature protocol that is well-supported by every major browser and a number of well-respected organisations provide third party SSL authentication services.

If you’re using Apache Tomcat, chances are that at least some of the data you’re handling is sensitive, and SSL is an easy way to offer your users security. The good news is that Tomcat fully supports the SSL protocol. The bad news is that the configuration process and SSL itself can be a little confusing for first-time users.

Certificate are bound to expire, For Tomcat, this can be configured in this path
– C:Program Files\Apache Software Foundation\Tomcat 7.0conf

Step 1: Copy the latest keystore to this path
Note: The certificate will have to be in this format .jks extension

Step 2: Now navigate to the server.xml file in this location below and edit with notepad ++ or any text Editor of your choice.

C:Program Files\ApacheSoftware\FoundationTomcat\7.0conf

Now point the connector marked for port 443 to point to this keystore
Note: Ensure you change the name to reflect how is it in conf file.

After configuration, it should look like this below (Do not copy the full path below)

"keystoreFile="C:ProgramFiles Apache\SoftwareFoundation\Tomcat7.0confkeystore2016.jks"

Kindly take a look at these link and this link2 for more information

Converting .pfx Files to .jks Files
See this link below on how to convert from .pfx form to .jks

Furthermore, I hope you found this blog post helpful. However, If you have any questions, please let me know in the comment session. I welcome you to follow me on Twitter and Facebook.

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x