It is important to secure communications between the different servers you will use. In particular, exchanges with the application server on which you are going to Deploy the SECollab application. If you are encouraged to use a certificate belonging to your company, you can still use a self-signed certificate by creating it as follows.
In the file
, Apache Tomcat is configured to read the server certificate from a keystore file.
To improve security, you need to generate a certificate. When you generate the new certificate you set values that are based on your company information. These values include the fully qualified domain name of the Tomcat server that you are deploying SEcollab.
The Java Development Kit (JDK)
keytool program is useful for managing keystores and certificates on the server.
The keytool program is provided with any standard JDK distribution and can be located in the
bin sub directory of wherever your JDK is installed: JAVA_HOME\bin.
For more information about the keytool program, see Key and Certificate Management Tool
Specifically, it is necessary to proceed as follows:
keytool -genkey -keyalg RSA -alias example_name -keystore example_name-ssl.keystore -storepass example_name -validity 360 -keysize 2048
example_name-ssl.keystorefile is changed so that it contains a self-signed certificate that is based on your company information.