Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

REST APIs

Deploy Vaultless Tokenization on HTTPS Server

search

Please Note:

Deploy Vaultless Tokenization on HTTPS Server

To support HTTPS for transport layer, perform the following steps:

  1. Create a KeyStore attested with Certificate Authority (CA) or self-signed.

    For self-signed KeyStore using Java, use the following command:

    keytool -genkey -alias tomcat -keyalg RSA -keystore <keystore_name>.keystore

  2. Edit the server.xml file under the CATALINA_HOME/conf folder. Add/uncomment the following changes in the connector port. 

    #For Tomcat 8 and 9
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"maxThreads="150" SSLEnabled="true" scheme="https" secure="true" keystoreFile="<keystore_path>" keystorePass="changeit" clientAuth="false" sslProtocol="TLS" />
#For Tomcat 10 and 11
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"maxThreads="150" SSLEnabled="true"><SSLHostConfig><Certificate certificateKeystoreFile="keystore_path" certificateKeystorePassword="keystore_pass" type="RSA"/></SSLHostConfig></Connector>

    Here, keystoreFile is the path of keystore file generate in step 1 and keystorePass is the password used during the keystore generation.

  3. Restart the Tomcat server.

  4. Check through browser for HTTPS: https://localhost:8443.

On this page