The steps outlined below will assist you in installing an SSL certificate on a JBoss Server. If you have not yet generated your certificate and finished the validation process, refer to our
CSR Generation Instructions before proceeding with the instructions below.
Step 1: Install an SSL Certificate on JBoss Server
- Obtain an SSL certificate from a trusted certificate authority.
- Copy the SSL certificate and the private key file to the JBoss server.
- Open the JBoss configuration file, standalone.xml or domain.xml, depending on the JBoss version and mode of operation.
Navigate to the section for the HTTPS connector and add the following attributes:
- ssl-enabled="true"
- scheme="https"
- secure="true"
- SSLEnabled="true"
- keystore-file="path/to/keystore"
- keystore-password="password"
- key-alias="alias"
- Save the configuration file and restart the JBoss server.
Step 2: Import the SSL Certificate on JBoss
- If you are using JBoss EAP 7 or later, you will need to import the SSL certificate and private key into a Java keystore.
Use the keytool command to import the certificate into the keystore:
keytool -importcert -alias "alias name" -file cert.crt -keystore keystore.jks -storepass "store password"
- Update the JBoss configuration file, standalone.xml or domain.xml, to use the Keystore that you just created.
- Restart the JBoss server for the changes to take effect.
Step 3: Test your SSL Installation
- Open a web browser and navigate to the JBoss server's URL using the https protocol (https://yourdomain.com).
- Check the SSL certificate is installed correctly by checking that the padlock icon is displayed, and that the certificate is issued by a trusted CA.
- Verify that the certificate is valid and not expired by checking the expiration date of the certificate.
- Check the SSL certificate is correctly configured by running the SSL Server Test by Qualys SSL Labs.
- Check that your application is correctly redirecting HTTP requests to HTTPS requests.
