About Importing Certificates into Keystore and Truststore

When you import your certificate into the keystore or truststore, you typically give it an alias (for example, —alias server) as follows:

keytool -import -trustcacerts -alias server -file your_site_name.p7b -keystore your_site_name.jks

Then in your server.xml file, you must declare the same alias (for example, keyAlias=”server”) as follows:

<Connector port="443" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true" SSLEnabled="true" clientAuth="false" sslProtocol="TLSv1.2" keyAlias="server" keystoreFile="/home/user_name/your_site_name.jks" keystorePass="your_keystore_password" />