Document URL: https://access.redhat.com/site/documentation/en-US/JBoss_Portal_Platform/6/pdf/Installation_Guide/JBoss_Portal_Platform-6-Installation_Guide-en-US.pdf Section Number and Name: 6.8. Enable HTTPS Communication Describe the issue: If there are native libraries installed you cannot use java keytool to generate keystore, but you have to use openSSL Suggestions for improvement: If the Tomcat Native libraries are installed, the certificate store need to be created using openSSL. Note: On Linux 32 bit and 64 distributions, the Tomcat native libraries are enabled by default. They can be disabled by setting the flag native="false" on the web subsystem configuration. Generation of a openSSL key and certificate: # openssl genrsa -des3 -out server.pem 1024 # openssl req -new -key server.pem -out server.csr # openssl x509 -req -days 365 -in server.csr -signkey server.pem -out servercert.pem HTTPS connector configuration for openSSL: <connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true" enabled="true"> <ssl password="mypassword" certificate-key-file="server.pem" protocol="TLSv1" verify-client="true" certificate-file="servercert.pem"/> </connector> Additional information:
Thanks very much for this detailed bug report, Marco. I've incorporated your changes and will submit them to QE for verification and approval. These changes will be in the JPP 6.1 Beta Release.