Question

How to install self-signed SSL on Apache Tomcat on CentOS 7.5

Can anyone point in the direction of simple, easy, instructions to install a self-signed SSL certificate on CentOS running Apache Tomcat (Jira)?

All I can tell so far is I think my installation uses APR and not JSSE. This is the Digital Ocean CentOS 7.5 image with only Jira installed.

I cannot find a simple set of instructions that doesn’t skip over many important points. For example this guide completely skips over generating the .crt and .pem files. I have now been trying to figure out how to get a set of .crt and .pem and I can’t find any guide that does that either.. Digital Ocean’s guide gives .key, .csr and .crt but not .pem. Other guides give different combinations but apparently not the ones that are needed.

Can anyone just give me the simple version of how to get this done? I just need to generate a compatible self-signed certificate and add it to this Apache Tomcat installation which is only running Jira.

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Hello,

What I could suggest here is setting up Nginx as a reverse proxy for your Jira instance and then installing a Let’s Encrypt SSL for Nginx.

Here’s how to setup Nginx for Jira:

https://confluence.atlassian.com/jirakb/configure-jira-server-to-run-behind-a-nginx-reverse-proxy-426115340.html

And then here’s how you could setup the Let’s Encrypt SSL for your Nginx server:

https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-18-04

Regards, Bobby