DexterHaslem/gist:bfcdec8cd258930a04fdaf72088ce5e9

## gistfile1.txt
keytool -genkey -alias tomcat -keyalg RSA -keysize 2048 -keystore keystore.jks
keytool -importkeystore -srckeystore keystore.jks -destkeystore keystore.p12 -deststoretype PKCS12
openssl pkcs12 -in keystore.p12 -out tomcatkey.pem -nodes
cat domain.crt gd_bundle-g2-g1.crt > combinedcerts
openssl pkcs12 -export -chain -CAfile gd_bundle-g2-g1.crt -in combinedcerts -inkey tomcatkey.pem -out tomcat.keystore -name tomcat -passout pass:myPassword


# then create connector like so
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
   maxThreads="100"
   SSLEnabled="true"
   scheme="https"
   secure="true"
   keystoreFile="/home/tomcat/tomcat.keystore"
   keystorePass="myPassword"
   keystoreType="PKCS12"
   clientAuth="false"
   sslProtocol="TLS"/>
	keytool -genkey -alias tomcat -keyalg RSA -keysize 2048 -keystore keystore.jks
	keytool -importkeystore -srckeystore keystore.jks -destkeystore keystore.p12 -deststoretype PKCS12
	openssl pkcs12 -in keystore.p12 -out tomcatkey.pem -nodes
	cat domain.crt gd_bundle-g2-g1.crt > combinedcerts
	openssl pkcs12 -export -chain -CAfile gd_bundle-g2-g1.crt -in combinedcerts -inkey tomcatkey.pem -out tomcat.keystore -name tomcat -passout pass:myPassword


	# then create connector like so
	<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
	maxThreads="100"
	SSLEnabled="true"
	scheme="https"
	secure="true"
	keystoreFile="/home/tomcat/tomcat.keystore"
	keystorePass="myPassword"
	keystoreType="PKCS12"
	clientAuth="false"
	sslProtocol="TLS"/>