On this page

By default, Web Application Platform is installed with SSL certificates. If needed, you can change the existing SSL certificate file with a new one as described in the section below.

Creating an SSL certificate file

Follow the steps bellow to create an SSL certificate file that you can later add to Web Application Platform.


To create the SSL certificate file

  • In the command-line execute the following command:

    keytool -genkey -noprompt -alias tomcat -dname "CN=<fqdn/host_name/ip_address>,OU=<organizational_unit>,O=<company_name>,L=<city>,S=<state/province>,C=<country_code>" -keystore ../conf/webapp.jks -storepass <password> -keypass <password> -keyalg RSA -keysize 2048 -validity 3600 -ext SAN=dns:<host_name>,ip:<ip_of_the_machine_running_wap>

    Important

    Make sure that you replace the placeholders (between <>) in the command with actual values:

    • CN - enter the fully qualified domain name, host name, or IP address for which the certificate should be issued.
    • OU - enter your organizational unit.
    • O - enter your company name.
    • L - enter your city.
    • S - enter your state or province.
    • C - enter your the two-letter code of your country.
    • storepass - enter the certificate keystore password.
    • keypass - enter the certificate keystore password (should be the same as the storepass value).

    • SAN=dns - enter the host name for which the certificate should be issued (should be the same as the CN value).

    • ip - enter the IP address of the machine were Web Application Platform is installed.

Changing the SSL certificate file

You can change the default SSL certificate file that comes with Web Application Platform installation as described below.


To change the SSL certificate file

  1. Go to the <web_app_platform_installation_directory>\conf directory and open the server.xml file.
  2. In the server.xml file, change the values of the following properties:
    • certificateKeystoreFile="<path_to_certificate_file>"
    • certificateKeystorePassword="<password>"

    Important

    Replace the placeholders between angle brackets (<>) with the path to a new SSL certificate file and the key password.
    If you have created the SSL certificate file as described in the above section, make sure that you specify the same key password as the storepass and keypass values you specified in the command for creating the certificate file.
  3. Save and close the server.xml file.
  4. Restart Web Application Platform.