Tomcat keeps its configuration information in a server.xml file, which ensures Tomcat is reading the correct keystore file and keystore password. This file also allows server administrators to set the port for secure connections. If the server.xml file is not configured, or if it is pointing to the wrong keystore, then the server may present the incorrect certificate to the client browser.
To configure the server.xml file to enable SSL in Tomcat, please see the information below:
Open the server.xml configuration file using a text editor (ie. JAKARTA_HOME/conf/server.xml)
Search for the secure element in your configuration file (try searching for SSL Connector). By default it should look something like this:
Make sure the keystoreFile directive is referencing the correct keystore and the keystorePass directive is referencing the correct keystore password.
NOTE: These directives are case-sensitive. Make sure the letters "F" and "P" in "keystoreFile" and "keystorePass" are in uppercase.
If your keystore contains more than one private key alias, please add the "keyAlias" directive to reference the correct private key alias name.
Save the changes.
Stop and start Tomcat