importing .pfx certificate to using tomcat 6.0

mxrandy · January 10, 2011, 9:33am

Hi,

Please help on how to import the .pfx using tomcat. need to configure the certificate for the jira to run under https.

already configure the server.xml with below configuration:
<Connector port=“8443” maxHttpHeaderSize=“8192” SSLEnabled=“true”

maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
          
enableLookups="false" disableUploadTimeout="true"
          
acceptCount="100" scheme="https" secure="true"

    keystoreFile="C:\company name_cert.pfx"
keystorePass="changeit"
keystoreType="PKCS12" />

and executed below command:

keytool -importkeystore -deststorepass changeit -destkeystore d:\path\to\jira4.0\jre\lib\security\cacerts

-srckeystore d:\path\to\my.pfx -srcstoretype PKCS12 -srcstorepass <password_for_pfx>

but still got Internet Explorer cannot display the webpage error message

thhanks

salvatoreg · January 23, 2011, 5:01pm

mxrandy post:1:

Hi,

Please help on how to import the .pfx using tomcat. need to configure the certificate for the jira to run under https.

already configure the server.xml with below configuration:
<Connector port=“8443” maxHttpHeaderSize=“8192” SSLEnabled=“true”
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
          
enableLookups="false" disableUploadTimeout="true"
          
acceptCount="100" scheme="https" secure="true"

    keystoreFile="C:\company name_cert.pfx"
keystorePass="changeit"
keystoreType="PKCS12" />
and executed below command:

keytool -importkeystore -deststorepass changeit -destkeystore d:\path\to\jira4.0\jre\lib\security\cacerts

-srckeystore d:\path\to\my.pfx -srcstoretype PKCS12 -srcstorepass <password_for_pfx>

but still got Internet Explorer cannot display the webpage error message

thhanks

Sorry for the late reply, did you have a look at our KnowledgeBase for the Tomcat Connector?

https://support.comodo.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=1212

ilf12345 · January 23, 2012, 3:20pm

mxrandy post:1:

Hi,

Please help on how to import the .pfx using tomcat. need to configure the certificate for the jira to run under https.

already configure the server.xml with below configuration:
<Connector port=“8443” maxHttpHeaderSize=“8192” SSLEnabled=“true”
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
          
enableLookups="false" disableUploadTimeout="true"
          
acceptCount="100" scheme="https" secure="true"

    keystoreFile="C:\company name_cert.pfx"
keystorePass="changeit"
keystoreType="PKCS12" />
and executed below command:

keytool -importkeystore -deststorepass changeit -destkeystore d:\path\to\jira4.0\jre\lib\security\cacerts

-srckeystore d:\path\to\my.pfx -srcstoretype PKCS12 -srcstorepass <password_for_pfx>

but still got Internet Explorer cannot display the webpage error message

thhanks

I don’t know if you managed in the end or not.
I had the same challenge and solved my problem by using the import into keystore. I made keysstore in the name tomcat.keystore
The command I used is
keytool -importkeystore -deststorepass ****** -destkeystore c:\users\administrator\tomcat.keystore -srckeystore c:\users\administrator\wildcard.pfx -srcstoretype PKCS12 -srcstorepass ******

The connector config I used
Pay attention that even in windows inside the connector config you should use back slash like in Linux
<Connector port=“443” maxHttpHeaderSize=“8192”
maxThreads=“150” minSpareThreads=“25” maxSpareThreads=“75”
enableLookups=“false” disableUploadTimeout=“true”
acceptCount=“100” scheme=“https” secure=“true”
clientAuth=“false” sslProtocol=“TLS” SSLEnabled=“true”
URIEncoding=“UTF-8” keystorePass=“******” keystoreFile="C:/Users/Administrator/tomcat.keystore”