Create a Java KeyStore (JKS) file

to use the certificate with apache tomcat, you must create a jks file to create a jsk file from an existing x509 certificate convert the x509 certificate to the p12 format using the command below the system will ask you to create an export password after the command define a password openssl pkcs12 export in < company name crt> inkey \<company name key > certfile \<company name crt> out \<company name keystore p12> using the new p12 file, run the command below to create the jks file the system will ask you to create a destination keystore password after the command define a password the system will then ask you for the source keystore password, which was created in the previous step as the export password /usr/java/jdk1 8 0 131/jre/bin/keytool importkeystore srckeystore \<company name keystore p12> srcstoretype pkcs12 destkeystore \<company name jks> deststoretype jks by default, the jks alias is set as 1 if you want to change the jks alias or password, use the following commands keytool changealias keystore \<path/to/jks> alias keytool keypasswd alias keystore \<path/to/jks>