How to Generate a CSR Request for Tomcat?

Document ID : KB000051590
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

Please follow these steps to generate a CSR request for an SSL certificate.

Solution:

  1. Click on Start-->Run and type in CMD.

  2. Type 'CD %Java_Home%\bin <%Java_Home% = Installation directory of Java in your environment>

  3. Type the following command to generate the Key Pair:

    "keytool -keysize 2048 -genkey -alias tomcat -keyalg RSA -keystore tomcat.keystore"

  4. When prompted for a password, use default password "changeit" unless you specified a different password during installation.

  5. You will be prompted for the following information:

    First and last name: Fully-qualified domain name (FQDN), Host name, or URL - to which you plan to apply your certificate.
    Organizational unit: Use this field to differentiate between divisions within an organization if applicable. If not enter the DBA of the company.
    Organization: The name under which your business is legally registered. The listed organization must be the legal registrant of the domain name in the certificate request.
    City/Locality: Name of the city in which your organization is registered/located.
    State/Province: Name of state or province where your organization is located.
    Country code: The two-letter country code for the country in which your organization is legally registered.

  6. Review that the information is correct and press 'Y'.

  7. To Generate a CSR enter the following command:

    keytool -certreq -keyalg RSA -alias tomcat -file Certificate.csr -keystore tomcat.keystore

  8. Enter the keystore password.

  9. The CSR will be created.