Ask a Question

How to move an SSL certificate from Tomcat to Tomcat server

Solution

To move an SSL certificate from one Tomcat server to another follow these steps:

Step 1: Export or back up the keystore from the primary Tomcat server

  1. On the Tomcat server search and open the server.xml file.
  2. Open the server.xml config file using a text editor (i.e. JAKARTA_HOME/conf/server.xml).
  3. Search for the secure element in your config file (try searching for SSL Connector).
  4. The keystore file name and path is listed under KeystoreFile, and Password is under keystorePass.

    For example:
  5. Go to the location directory of your keystoreFile and make a copy the file and store it on an alternate drive or USB. Copy the keystore file to the secondary Tomcat server.
    Note: Remember the KeystorePass is required to configure your backed up keystoreFile once copied to the secondary Tomcat server.


Step 2: Configure SSL keystore on the secondary Tomcat server

  1. After copying the back up SSL keystore to the secondary server. Search and open the Tomcat server.xml file.
  2. Open the server.xml config file using a text editor (i.e. JAKARTA_HOME/conf/server.xml).
  3. Search for the secure element in your config file (try searching for SSL Connector).

    For example:
  4. Specify the location path of keystoreFile & keystorePass information within the server.xml file. For more information configuring the server.xml file in Tomcat to enable SSL, refer to SO5306.
  5. Save the changes
  6. Stop and Start the Tomcat server.
  7. Verify the SSL certificate using Symantec Certificate Checker.


Tomcat

For more information refer to Tomcat Support.