Configuring PFX keystore in Apache Tomcat

Many times we get PFX keystore from client to configure SSL on the Apache Tomcat Server. Below are the tags need to use to configure the provided PFX keystore. Many times we get PFX keystore from client to configure SSL on the Apache Tomcat Server. Below are the tags need to use to configure the provided PFX keystore.

<Connector  protocol=”org.apache.coyote.http11.Http11NioProtocol” port=”443″ maxThreads=”200″ redirectPort=”-1″ disableUploadTimeout=”false” connectionUploadTimeout=”3600000″ acceptCount=”100″ acceptorThreadCount=”2″ scheme=”https” secure=”true” SSLEnabled=”true” keystoreFile=”D:\certs\server.pfx” keystoreType=”PKCS12″ keystorePass=”PASSWORD” clientAuth=”false” sslProtocol=”TLS” sslEnabledProtocols=”SSLv2Hello,SSLv3,TLSv1,TLSv1.1,TLSv1.2″ URIEncoding=”UTF-8″ server=”Application Server” ciphers = ” TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_3DES_EDE_CBC_SHA,SSL_RSA_WITH_3DES_EDE_CBC_SHA”/>

Note: You can change the values for acccptCount, AcceptorThreadCount, sslEnabledProtocols and ciphers as per your requirements.


<<Click here to see all posts>>

If you found any of the information on this page helpful in anyway then please consider sharing this content with your favorite social network or by leaving your thoughts in the comment section. Thanks!

Leave a Reply

Your email address will not be published. Required fields are marked *

Prove You Are Human Time limit is exhausted. Please reload CAPTCHA.