{scrollbar}

To add a new HTTPS listener click on the link Tomcat|Jetty BIO|NIO|APR HTTPS Connector. The following figure illustrates some of the parameters possible for creating a new Tomcat BIO HTTPS listener. Each parameter has a default value and an explanatory text. Fill in with your values and click on Save.

Apache Geronimo v2.2 > Add new HTTPS listener > consoleHTTPSListener.png

The required attributes are explained as followed:

uniqueName A name that is different than the name for any other web connectors in the server (no spaces in the name please).
host The host name or IP to bind to. The normal values are 0.0.0.0 (all interfaces) or localhost (local connections only)
keystoreFile The file that holds the keystore (relative to the Geronimo install dir)
port The TCP port number on which this Connector will create a server socket and await incoming connections. Your operating system will allow only one server application to listen to a particular port number on a particular IP address.

For a Tomcat APR HTTPS Connector

Starting from v2.2, Geronimo uses server.xml to configure Tomcat. You need to update server.xml to use HTTPS Connector with APR enabled. Use the following code snippet as an example.

       <Connector name="TomcatWebSSLConnector" 
                   port="${HTTPSPort + PortOffset}"
                   host="${ServerHostname}"
                   SSLEnabled="true"
                   maxThreads="150"
                   scheme="https"
                   secure="true"
                   clientAuth="false"
                   SSLCertificateFile="/usr/local/ssl/server.crt" 
                   SSLCertificateKeyFile="/usr/local/ssl/server.pem"
                   sslProtocol="TLS"
                   executor="DefaultThreadPool"/>

Refer to Tomcat SSL Support for more information about other attributes.