Join Log in
Score:0
J Kuder avatar Server

Tomcat 7.0 Certificate Update

hm flag
J Kuder

We have a windows server running Tomcat 7.0 which the SSL certificate has expired. We have a new certificate, but are unsure of how to update it to the new one. Can anyone help?

42
1 + 0
Score:0
avatar Server
ws flag
symcbean

First, upgrade your Tomcat installation. 7.0 has been EOL for over 2 years now (and using certificates implies you have this exposed on the internet).

Have a look in server.xml to see how the certificate is currently deployed - either tomcat will be reading PEM files from the filesystem or retrieving the certificate and key from a designated Java certificate database. The latter is maintained using the keytool program with a file in PKCS#12 format. For the former, simply replace the files. For the latter, upload the certificate using the same name already in the config. (BTW the default password on Java certificate databases is changeit

e.g. here's the config from a nearby Linux box....

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS" keyAlias="mywebsslcert"
               keystoreFile="/usr/local/etc/tomcat.jks"
               keystorePass="changeit" />
+ 2
J Kuder avatar
hm flag
J Kuder
would this be the same for windows server as well?
0
Reply
dave_thompson_085 avatar
jp flag
dave_thompson_085
`changeit` is the initial (not really default) password _for the system truststore `cacerts`_ but you should not put your own cert (here the server cert) in `cacerts` -- and your example doesn't. For a keystore you create the password is whatever you choose. `keytool` supports PKCS12, JKS, _and_ JCEKS in all versions, plus non-file-based stores, but in java 8 which you linked (and lower) it _defaults_ to JKS.
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.