Hi,
I had searched on multiple sources and tried multiple solutions but cannot make my
Tomcat take my trusted certificates:
I had purchased a SSL certificate from my ISP provider which was issued by DigiCert. I am having trouble to make my Tomcat deployed AWS Linux accepting it. Here are the details of the procedure that I think it should work.
I have created my keystore (jks format) , and signing request using keytool. After getting the certificate for my domain and the root certificate, I ran the following commands:
keytool -import -alias root -file rootca.crt -keystore mkeystore.jks
keytool -import -alias myalias -file mysubdomain.pem -keystore mykeystore.jks
In server.xml, I have the following entry:
<Connector SSLEnabled="true" clientAuth="false" keystoreFile="conf/mykeystore.jks" keystorePass="mypassword" keyAlias="myalias" maxThreads="150" port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" sslProtocol="TLS"/>
After I restart Tomcat, I have the follow error:
Caused by: java.lang.IllegalArgumentException: Alias name [myalias] does not identify a key entry
at org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext(AbstractJsseEndpoint.java:116)
Any help is appreciated!
Thanks,