Create the Tomcat server keystore file and certificate.


Generate the keystore file in the home directory where you issue the command.


  • Issue the command to generate the keystore file. For example, run this command for the SAM host if it has a Fully Qualified Domain Name (FQDN):
    /opt/InCharge/SAM/smarts/jre/bin/keytool -genkey -alias tomcat -keyalg RSA
    To specify a different location or filename, add the -keystore parameter followed by the complete pathname to the keystore file. For example,
    /opt/InCharge/SAM/smarts/jre/bin/keytool -genkey -alias tomcat -keyalg RSA 
    -keystore /opt/InCharge/SAM/smarts/.keystore
    1. Enter changeit for the keystore password.
    2. When asked for your first and last name, enter the fully qualified name of the machine, for example,
    3. Answer the other questions and type yes when asked for confirmation.
    If you are using an IP address naming convention for the configuration, run this command and specify the IP address of the SAM host for < ip:y.y.y.y>.
    /opt/InCharge/SAM/smarts/jre/bin/keytool -genkey -alias tomcat -keyalg RSA -ext SAN=<ip:y.y.y.y> -keystore /opt/InCharge/SAM/smarts/.keystore


This creates a keystore file inside /opt/InCharge/SAM/smarts folder with name .keystore.