Use SSL between httpd and JBossWEB - Create the server certificate
11.2.1.2. Create the server certificate (See above) The certificate and key need to be imported into the java keystore using keytool make sure you don't use a passphare for the key (don't forget to clean the file when done) Convert the key and certificate to p12 file: openssl pkcs12 -export -inkey key.pem -in newcert.pem -out test.p12 make sure you use the keystore password as Export passphrase. Import the contents of the p12 file in the keystore: keytool -importkeystore -srckeystore test.p12 -srcstoretype PKCS12 Import the CA certificate in the java trustore: (Fedora13 example). keytool -import -trustcacerts -alias "caname" \ -file ../../CA/cacert.pem -keystore /etc/pki/java/cacerts Edit server.xml to have a similar to: Start TC/AS and use openssl s_client to test the connection: openssl s_client -CAfile /home/jfclere/CA/cacert.pem -cert newcert.pem -key newkey.pem \ -host localhost -port 8443 There shouldn't be any error and you should be able to see your CA in the "Acceptable client certificate CA names".