I’ve just registered here and I’m completely new to configuring a server to use an SSL certificate. Previously I used shared hosting for which a free SSL certificate was provided. Recently I switched to VPS hosting as I wish to use one or more servers of my choice so as to be able to run applications that may not be supported with shared hosting.
I’m using a Linux CentOS 7 x64 system and installed the EE version of Tomcat. I configured the server without a certificate to use the “https” protocol, and additionally configured it so that if “http” is entered the protocol switches to “https”, and the URL is https://cs-cubed.com. However, browsers warn and block the website for security reasons without having to force access to it. Obviously this has to be fixed.
In following some instructions online I created a the folder ssl in Tomcat’s home directory and created the file cs-cubed.jks, then I edited the server.xml file in the conf directory with the code:
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" maxThreads="150" SSLEnabled="true" keystoreFile="/home/tomee/ssl/cs-cubed.jks" keystorePass=[password]> <!--<SSLHostConfig> <Certificate certificateKeystoreFile="conf/localhost-rsa.jks" type="RSA" xpoweredBy="false" server="Apache TomEE" /> </SSLHostConfig>--> </Connector>
and keeping the old code by commenting it out.
There appear to be various options of installing a certificate, but some of these may change the configuration that is already set up, which I do not want.
My question is, how do I set up a (free) certificate on the server with making as few changes as possible?
A reply would be most appreciated - many thanks in advance.