Activate HTTPS on JBoss AS 7

Activate HTTPS on JBoss AS 7

keytool -genkey -keystore filename.keystore -storepass mypassword -keypass mypassword -keyalg RSA -validity 180 -alias somealias -dname "cn=Name Surname,o=MyCompany,c=US"

The command will create a self-signed certificate, stored in the .keystore file.

Copy the .keystore file to JBOSS_AS_7_HOME/standalone/configuration

Open JBOSS_AS_7_HOME/standalone/configuration/standalone.xml

Look for the following element:

1 2 3 4 5 6 7

<subsystem xmlns="urn:jboss:domain:web:1.0" default-virtual-server="default-host">     <connector name="http" protocol="HTTP/1.1" socket-binding="http" scheme="http"/>     <virtual-server name="default-host" enable-welcome-root="true">         <alias name="localhost"/>         <alias name="example.com"/>     </virtual-server> </subsystem>

Change it to make it look like this:

1 2 3 4 5 6 7 8 9 10

<subsystem xmlns="urn:jboss:domain:web:1.0" default-virtual-server="default-host">     <connector name="http" protocol="HTTP/1.1" socket-binding="http" scheme="http"/>     <connector name="https" protocol="HTTP/1.1" socket-binding="https" scheme="https" secure="true">         <ssl key-alias="somealias" password="mypassword" certificate-key-file="../standalone/configuration/filename.keystore" cipher-suite="ALL" protocol="TLS"/>     </connector>     <virtual-server name="default-host" enable-welcome-root="true">         <alias name="localhost"/>         <alias name="example.com"/>     </virtual-server> </subsystem>

Restart JBoss AS 7.

Notice the following lines in the console output/log:

17:45:21,689 INFO  [org.apache.coyote.http11.Http11Protocol] (MSC service thread 1-4) Starting Coyote HTTP/1.1 on http--127.0.0.1-8080
17:45:22,138 INFO  [org.apache.coyote.http11.Http11Protocol] (MSC service thread 1-3) Starting Coyote HTTP/1.1 on http--127.0.0.1-8443

HTTPS will be running on port 8443 by default.

To change the HTTPS port, look for the socket-binding-group element in standalone.xml