I have no idea of the state of crypto on Tomcat in any version, I only know that Java's SSL/TLS implementation is in a bad state. But I can't imagine, that Java1.7 and Tomcat 7, which are part of Ubuntu 14.04, don't have too weak ciphers. Or your clients are too restrictively configured, but I assume, you haven't done that. – sebix Apr 5 '15. Restart Note: After you've installed your SSL/TLS certificate and configured the server to use it, you must restart the Tomcat service. For a simpler way to create your CSRs (Certificate Signing Requests) and install and manage your SSL Certificates, we recommend that you use the DigiCert® Certificate Utility for Windows.
Tomcat 7 Ssl Key
In this post I will cover the steps required for importing a GoDaddy issued SSL certificate into a Tomcat 7 server. This post was inspired by a similar question on Stackoverflow.
Step 1 Create a new keystore:
Step 2 Generate a CSR and submit it to GoDaddy:
Step 3 Download from GoDaddy the zip containing the certificate files (domain.crt, gd_bundle-g2-g1.crt and gdig2.crt – you will basically ignore the gdig2.crt file) and create a PKCS12 keystore:
Tomcat 7 Ssl Configuration Steps
Step 4 Configure Tomcat to use tomcat.keystore and then restart the server:
Tomcat 7 Ssl Configuration
Tomcat should now use the GoDaddy SSL certificate.