For the Tomcat bit, you’ll need to do some additional processing after handling the cert bit. Tomcat uses Java Keystores, and you can find some directions at this post.
For IIS, there are some tools that can automate the process. I suggest searching the community forum as it’s been discussed quite a bit.