If you don't have access to a Windows computer, prefer not to use the DigiCert Utility, or for some reason cannot use the utility, see Tomcat: Create CSR & Install SSL Certificate with Keytool. keytool -genkey -alias tomcat -keyalg RSA -keystore app.keystore then I've tried to import keytool -import -alias tomcat -v -keystore wic.keystore -file cert.p7b The first step would be to generate a CSR and get that signed by the certificate authority.

Enable SSL in Tomcat; Configure TLS protocol; Change Tomcat to listen on 443 port; Test Tomcat for SSL vulnerability; Let’s start… Preparing for SSL/TLS Certificate. Tomcat/keytool is a picky system. Tomcat wants to see the entire certificate chain before installation of the SSL Certificate. Login to the Tomcat server Step 1: Generate the SSL certificate by running the following command $ keytool -genkey -keyalg RSA -alias tomcat -keystore selfsigned.jks -validity 365 -keysize 2048. Typically this can be solved by importing the entire chaining path of your SSL Certificate in the following order: Root > Intermediate > SSL Certificate. Następnie należy zainstalować certyfikaty, wprowadzając poniższe polecenia za pomocą narzędzia keytool.
The number of days that indicates 365 is for which the certificate will be valid. Tomcat SSL Installation Instructions Installing the Certificates to the Keystore Download your certificate files from your certificate authority and save them to the same directory as the keystore that you created during the CSR creation process.
To Use keytool to Create a Server Certificate. We will use keytool utility to manage the certificates. Self-signed SSL certificate and add into Java truststore. Instalowanie certyfikatu SSL w środowisku Tomcat Po wystawieniu certyfikatu należy pobrać go z poziomu narzędzia Menedżer certyfikatów i umieścić w folderze magazynu kluczy. The selfsigned.jks is the key store file. Run keytool to generate a new key pair in the default development keystore file, keystore.jks.This example uses the alias server-alias to generate a new public/private key pair and wrap the public key into a self-signed certificate inside keystore.jks.The key pair is generated by using an algorithm of type RSA, with a default password of changeit. I. Tomcat Server: Create Your CSR with the DigiCert Utility