Enable SSL in Tomcat with server.xml

Solution ID:    SO2144    Updated:    09/29/2015


Enable SSL in Tomcat with server.xml
Configuring the SSL Connector in server.xml


To configure the server.xml file to enable SSL in Tomcat, please see the information below:
  1. Open the server.xml config file using a text editor (ie. JAKARTA_HOME/conf/server.xml)
  2. Search for the secure element in your config file (try searching for SSL Connector). By default it should look something like this:

    <!-- SSL Connector on Port 443 -->
          port="443" minProcessors="5"
          connectionTimeout="60000" debug="0"
           scheme="https" secure="true">
                 clientAuth="false" protocol="TLS"
                 keystoreFile="insert path to the keystore here"
                 keystorePass="insert keystore password here"

  3. Make sure the "keystoreFile" directive is referencing the correct keystore and the "keystorePass" directive is referencing
    the correct keystore password.
    NOTE: These directives are case-sensitive! Make sure the letters "F" and "P" in "keystoreFile" and "keystorePass" are in uppercase.
  4. If your keystore contains more than one private key alias, please add the "keyAlias" directive to reference the correct private key alias name

    For Example:

    keystoreFile="insert path to the keystore here"
    keystorePass="insert keystore password here"
    keyAlias="insert private key alias here"/>
  5. Save the changes.
  6. Stop and start Tomcat
  7. To verify if your certificate is installed correctly, use the Thawte Installation Checker
For more information, see Tomcat Support website.


Legacy ID



Thawte has made efforts to ensure the accuracy and completeness of the information in this document. However, Thawte makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. Thawte assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document. Further, Thawte assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. Thawte reserves the right to make changes to any information herein without further notice.  

Knowledge Center

Search Tips