Chapter 5. Securing Apache Tomcat Server

Table of Contents

Resources
Servlet Container
Standalone
Setting Up Your CA
Setting Up Your Webserver
Setting Up a SSL Client

Apache's Tomcat java application server, can be secured using SSL in two ways.

There are multiple versions of Tomcat that are used, and each has a unique requirement for configuration. As of this writting Apache has the following versions of tomcat documented on their web site:

All of the documentation for these servers is maintained on the tomcat.apache.org website. Under the appropriate version of Tomcat you are interested in securing is a section titled "SSL". This section will contain the necessary steps for setting up SSL with Tomcat and is repeated in part in this document in the Standalone section.

See also: