<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" maxThreads="150

1. <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
2. maxThreads="150" scheme="https" secure="true"
3. clientAuth="false" sslProtocol="TLS" sslEnabledProtocols="TLSv1.2,TLSv1.1" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,TLS_WITH_AES_128_GCM_SHA256"
4. keystoreFile="/path/to/keystore/file"
5. keystorePass="password" />
6.  
7. cat <keyfile> | openssl pkcs12 -export -out <keystore>.p12
8. Enter pass phrase:
9. unable to load certificates
10.  
11. keytool -importkeystore -srckeystore <keyfile> -srcstoretype pkcs12 -destkeystore <keystore>.jks
12. Enter destination keystore password:
13. Re-enter new password:
14. Enter source keystore password:
15. keytool error: java.io.IOException: toDerInputStream rejects tag type 45
16.  
17. keytool -import -trustcacerts -alias tomcat -file <certchain>.p7b -keystore <keystorefile>.jks
18. Enter keystore password:
19. keytool error: java.lang.Exception: Input not an X.509 certificate
20.  
21. openssl x509 -inform der -in certfile.cer -out new_certfile.pem