Navigate
X

How To Configure SSL For Apache Tomcat 8 Using Let’sencrypt On Ubuntu 19.04

Sharing is caring!

I have to show how to using let’s Encrypt for apache tomcat 8.0.46 and java 8u144. Let’s encrypt is an open source ssl solution for everyone. So I am configure it on Ubuntu 19.04 server.

How To Add Windows Host In Zabbix Server
How To Install FreePBX Server On Ubuntu 14.04

If your server local so below port must be forward from your router.

  • 80 (LAN) point to 80 (WAN) << Not permanent [ only When install Let’s encrypt ]
  • 8443 (LAN) point to 8080 or other what you needed (WAN) << Permanent
  • LAN IP : 10.66.50.20
  • WAN IP : 45.251.231.171
  • JAVA version : 8u144 << Tested
  • Tomcat version : 8.0.46 << Tested

Step #01: Server must be update so not update your server so use this command for update Ubunut 19.04.

root@Apache-Tomcat:~# apt-get update && upgrade -y

Step #02: Install let’s encrypt and certbot for Ubuntu 19.04.

root@Apache-Tomcat:~# add-apt-repository ppa:certbot/certbot
root@Apache-Tomcat:~# apt-get update
root@Apache-Tomcat:~# apt-get install letsencrypt -y
root@Apache-Tomcat:~# wget https://dl.eff.org/certbot-auto -P /usr/local/bin
root@Apache-Tomcat:~# chmod a+x /usr/local/bin/certbot-auto
root@Apache-Tomcat:~# export DOMAIN="tomcat.technologyrss.com"
root@Apache-Tomcat:~# export EMAIL_ALERT="admin@technologyrss.com"

Before install stop tomcat service using below command.

root@Apache-Tomcat:~# /etc/init.d/tomcat stop

Now run main command for install let’s encrypt on my ubuntu server.

root@Apache-Tomcat:~# /usr/local/bin/certbot-auto certonly --standalone -d $DOMAIN  --preferred-challenges http --agree-tos -n -m  $EMAIL_ALERT --keep-until-expiring
root@Apache-Tomcat:~# certbot-auto renew

So now I install p12 file and jks file using java tool and previously created letsencrypt fullchain.pem & privkey.pem

Step #03: Create .p12 file using below command & this file save into /etc/letsencrypt/ location.

root@Apache-Tomcat:~# openssl pkcs12 -export -out /etc/letsencrypt/fullchain.p12 -in /etc/letsencrypt/live/tomcat.technologyrss.com/fullchain.pem -inkey /etc/letsencrypt/live/tomcat.technologyrss.com/privkey.pem -name tomcat

Create two time password for using every time this.

Step #04: Goto my java bin location for create .jks file using fullchain.p12 file.

root@Apache-Tomcat:~# cd /home/app/Java/jdk/8u144/bin/
root@Apache-Tomcat:/home/app/Java/jdk/8u144/bin# ./keytool -importkeystore -deststorepass passw0rd -destkeypass passw0rd -destkeystore /etc/letsencrypt/tomcat.technologyrss.com.jks -srckeystore /etc/letsencrypt/fullchain.p12  -srcstoretype PKCS12 -srcstorepass passw0rd -alias tomcat

Step #05: Open server.xml file from tomcat folder.

root@Apache-Tomcat:~# vi /home/app/Tomcat/8.0.46/conf/server.xml

Inert or edit below all lines into server.xml file.

<Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol"
            maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
            keystoreFile="/etc/letsencrypt/tomcat.technologyrss.com.jks"
            keystorePass="passw0rd"
            clientAuth="false" sslProtocol="TLS" />

Save this file & stop and start tomcat.

root@Apache-Tomcat:~# /etc/init.d/tomcat start

Then browse your server domain using ssl. If any problem so see my YouTube channel for more details. Please subscribe my channel for more update.

Latest posts by Admin (see all)
0 0 votes
Article Rating
Tags: Apacheapache darijaapache serverapache server darijaapache tomcatapache tomcat 8apache tomcat 9.0.21apache tomcat8apache ubuntu serverapache2candidateclient serverclient server program in javaclient server program in java using netbeansdarijafixfreehackhelphow to install apache tomcat 8 on ubuntu 16how to install tomcat 8 on ubuntu 18.04how to install tomcat server 8 on ubuntu 18.04how to install tomcat server 8.5 on ubuntu 18.04httpdhttpd serverinstall and run apache web server in ubuntu linuxinstall tomcatinstallaing tomcat9installatin tomcat 8installationkali linuxLinuxlinux serverlinux tutoriallinux videolinuxhelp.comnoopensslpart 2php5-cgisocketsocket programming in java | client server program in java using netbeanssocket programming using netbeansssl certificatessl certificatesTomcattomcat 8tomcat8Ubuntuubuntu 19.04ubuntu serverubunut
Admin: I am system administrator as Windows and Linux platform. I have 4 years skilled from the professional period. I have to configure Linux based system such as an Asterisk VOIP system, Network monitoring tools (ZABBIX), Virtualization (XEN Server), Cloud computing (Apache CloudStack) etc. Now share my professional skill each interested person. Thanks to all.

View Comments (2)

Leave a Comment
Related Post
  1. How To Clear RAM Memory Cache Buffer Linux Server
  2. How To Install Zabbix Server 6.4 On Ubuntu 22.04
  3. How To Install Zabbix Server 7.0 On Ubuntu 22.04
Leave a Comment

Tag Cloud

Apache (20) CentOs (23) centos 7 (14) Cloud (9) computer (18) gnu/linux (operating system) (11) help (16) how (12) how-to (website category) (10) how to (42) how to install (12) how to install zabbix monitoring on ubuntu server (15) how to install zabbix server (24) install (29) installation (13) install zabbix (27) Linux (53) linuxhelp.com (13) linux tutorial (19) linux video (13) monitoring (16) mysql (13) open source (10) OpenSource (12) server (22) software (10) software (industry) (14) tutorial (47) Ubuntu (69) ubuntu (operating system) (19) ubuntu 16.04 (22) ubuntu 18.04 (15) ubuntu server (20) windows (20) windows 10 (9) wordpress (9) zabbix (39) zabbix agent (20) zabbix install (12) zabbix monitoring (18) zabbix monitoring server (10) zabbix on ubuntu (11) Zabbix Server (41) zabbix server 3.4 (9) zabbix tutorial (26)