HOME SSL CERTIFICATES Server Certificates All... QuickSSL QuickSSL Premium Power Server ID SSL Unified Communications Certificate True BusinessID SSL Wildcard SSL SSL for OWA X.509 SSL for WSE Extended Validation SSL EV SSL EV SSL Requirements Buying SSL Help Me Decide Understanding SSL Authentication Compare SSL Certificates FAQ Renew Buy Now AUTHORIZE.NET Merchant Account Overview How It Works Merchant Account FAQ Apply Now Resell Merchant Accounts COMPANY About GeoCerts Contact Our Customers Customer Comments Privacy Policy Site Map SUPPORT Support Options Support Overview Contact Support Self Service Reissues Certificate Installation Knowledge Base Archives Cancellations & Refunds RESOURCES Browser Compatibility Mobile Device Compatibility How SSL Works How To Use SSL Root CA Certificates Renewing An IIS Certificate Keytool Manual Pages OpenSSL Manual Pages Legal CSR Request About the CSR Generate CSR GeoTrust Site Seals How Site Seals Work Site Seal Installation BUY NOW SSL Manager Login Create SSL Manager Account Purchase SSL Renew SSL

Install SSL Certificate: Tomcat

Follow these instructions to install your GeoTrust SSL certificate for your Web site.

Import and Install the GeoTrust Root CA Certificate

1. First, copy the GeoTrust CA root certificate to a file on your local or network file system as geotrustroot.crt. The GeoTrust CA root certificate is available from your SSL Manager account. Login at https://secure.geocerts.com and click the My Certs tab. Then click the order ID number of the certificate to bring up a detail page. Highlight, copy, and paste the green text below "CA Root Certificate".
2. Using the java keytool command line utility, import the geotrustroot.crt CA certificate using the following command: keytool -import -alias geotrustca -keystore /working/mykeystore -file geotrustroot.crt The command should be typed on one line. This command imports the CA root certificate into the keystore named mykeystore in the working directory (assuming it already exists). Your keystore path and name may be different.

Import and Install the SSL Server Certificate

1. Save the SSL server certificate anywhere on your local or network file system as yourdomain.crt. The SSL server certificate is the block of text included in the body of the fulfillment email sent to you when your order completed. It is also available from your SSL Manager account. Login at https://secure.geocerts.com and click the My Certs tab. Then click the order ID number of the certificate to bring up a detail page. Highlight, copy, and paste the green text below "Server Certificate".
2. Using the java keytool command line utility, import the yourdomain.crt certificate using the following command: keytool -import -alias tomcat -keystore /working/mykeystore -file yourdomain.crt The command should be typed on one line. This command imports the certificate into the keystore named mykeystore in the working directory. Your keystore path and name may be different.

Update Your Tomcat server.xml Configuration File:

1. Open $JAKARTA_HOME/conf/server.xml in a text editor.
2. Find the following section: <Connector className="org.apache.catalina.connector.http.HttpConnector"
port="8443" minProcessors="5" maxProcessors="75"
enableLookups="true"
acceptCount="10" debug="0" scheme="https" secure="true">
<Factory className="org.apache.catalina.net.SSLServerSocketFactory"
clientAuth="false" protocol="TLS"
keystoreFile="/working/mykeystore"
keystorePass="password"/>
3. If you want Tomcat to use the default SSL port, change all instances of the port number 8443 to 443.
4. Edit the keystoreFile and keystorePass directives to correspond with the keystore file and password that you are using.
5. Start or restart Tomcat using the appropriate startup script (startup.sh for unix/linux or startup.bat for windows).

Home | SSL Certificates | GeoAuthorize | Support | Company | Contact Us | Buy Now | Renew | Site Map

Copyright © 2002-2008 GeoCerts | copyright protection by  bitscan™
All registered trade/service marks are property of their respective holders.
*Orders flagged by GeoTrust for a manual security audit may take longer than ten minutes.