...
Code Block | ||
---|---|---|
| ||
"%JAVA_HOME%\bin\keytool" -genkey -alias tomcat -keyalg RSA -keystore C:\app\secure\keystore.jks |
Linux
Code Block | ||
---|---|---|
| ||
$JAVA$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore pathToKeystoreFile |
E.g.
Code Block | ||
---|---|---|
| ||
$JAVAsudo mkdir /opt/tomcat/secure $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore /opt/tomcat/secure/keystore.jks sudo chown -R tomcat:tomcat /opt/tomcat/secure sudo chmod 500 /opt/tomcat/secure sudo chmod 400 /opt/tomcat/secure/keystore.jks |
Warning |
---|
Ensure that you create your keystore in a location that is only accessible to privileged users |
...
To complete the command:
- Enter a keystore password when prompted - keystorePasswd
- Enter information about your company, contact name, etc - this information will be displayed when users access PhixFlow
- Select the default option not to set a separate password for the private key; if you want to do this, consult the tomcat documentation for further details.
...
Warning |
---|
Because the password for the keystore is stored in the server.xml file, ensure that this file is only accessible to privileged users |
...
- Restart tomcat. PhixFlow will now be available at
...
To use a certificate from a certificate authority, following follow instructions in the standard tomcat documentation, e.g. the section Installing a Certificate from a Certificate Authority on the page https://tomcat.apache.org/tomcat-8.05-doc/ssl-howto.html