Configure SSL with a Tomcat Server on Windows
To configure SSL with a Tomcat Server on Windows:
Open a command prompt. Note:
On certain operating systems, because of OS security, you must run the command prompt as an
Administrator. To do this, change to the OS_INSTALL_DRIVE:/Windows/system32/ directory, locate and right-click on
cmd.exe, and then select Run as Administrator.
Issue the following command to generate a
certificate: > keytool -genkey -alias tomcat -keyalg RSA -validity 360 -dname "CN=SERVERNAME,o=3DPLM,ou=Platform,1=Pune,s=MH,c=IN"
-keystore CATALINA_HOME\.keystore Note:
The keytool executable is located in the JAVA_HOME\bin\ directory. If you experience any issues, ensure that:
- JAVA_HOME is correctly set.
- JAVA has been added to the PATH variable as mentioned in the prerequisites, above.
- Correct values are specified for the following:
- SERVERNAME--Full computer name of the
machine on which the application server is running.
- CATALINA_HOME--Path to the application server (Apache
Tomcat) home directory.
When prompted, specify a
password (for example, v6r2012), and note it.
On
successful execution of the keytool command, a file named .keystore is created in
the CATALINA_HOME directory. Note:
Verify
that the .keystore file has been created in the
CATALINA_HOME directory.
Change to the CATALINA_HOME\conf\ directory. Open
the server.xml file in a text editor, and then search
for the string scheme="https". Uncomment the definition of the
SSL connect on port 8443 that has "scheme=https" as an
attribute and update the definition as follows:
<Connector protocol="org.apache.coyote.http11.Http11Protocol" port="8443" minSpareThreads="5"
maxSpareThreads="75" enableLookups="true" disableUploadTimeout="true" acceptCount="100" maxThreads="200
scheme="https" secure="true" SSLEnabled="true" sslProtocol="TLS" keystoreFile="CATALINA_HOME\.keystore"
keystorePass="v6r2012" clientAuth="false"/> Note:
The value of
keystorePass in the above descriptor should be the value for
the password specified in
Step 3, above.
Run the Tomcat server.
Access the link
https://SERVERNAME:8443/, where SERVERNAME is the full computer name of the
machine on which the application server is running. If the setup is fine, then you
should be able to view the Tomcat home page.

Import certificates served by the Live Collaboration Server as trusted
To fully support HTTPS/SSL deployment, the certificates served by the Live Collaboration Server must be imported as trusted certificates in each J2EE-deployed ENOVIA V6 server
(ENOVIA Live Collaboration Server/File Collaboration Server/SyncServer). This should be done using the keytool program found in the JRE of your J2EE server. The syntax is as follows: > keytool -importcert -trustcacerts -keystore JREE_SERVER_JRE_PATH\lib\security\cacerts
|