Frequently Asked Question

Set Up HTTPS/SSL Connection for ESET PROTECT (8.x–10.x)
Last Updated 2 years ago


Issue Overview

You might receive a warning message about using an unencrypted connection. This guide addresses how to:

  • Reinstall ESET PROTECT using the All-in-one installer
  • Use an existing certificate
  • Create a new certificate

Reinstall ESET PROTECT

  1. Ensure Apache Tomcat Is Unoccupied: Make sure Apache Tomcat is not being used by any application other than ESET PROTECT.
  2. Uninstall Apache Tomcat: This also removes ESET PROTECT.
  3. Download All-in-one Installer: Use the same version as your ESET PROTECT Server.
  4. Run the Installer: Select 'Install,' agree to the EULA, and then select the components you want to install. The HTTPS certificate is generated automatically during the installation.image
Custom HTTPS Certificate
  • Select "Add Custom HTTPS certificate for Webconsole."image
  • Browse and upload a valid certificate file (.pfx or .p12) and enter its passphrase.image

Use an Existing Certificate

  1. Locate Certificate: Move your .pfx certificate file to your Tomcat install directory.
  2. Edit Server.xml: Open this file with a text editor and make the necessary changes.
  1. Restart Tomcat: This applies the changes.

Create a New Certificate and Get It Signed

  1. Prerequisites: Ensure Java, ESET PROTECT, and Apache Tomcat have the same bitness (32-bit or 64-bit).
  2. Create a Keystore: Use Java's keytool.exe to create a keystore with an SSL certificate.
  3. Export the Certificate: Use keytool.exe to export the certificate.
  4. Get It Signed: Have the SSL certificate signed by your Root CA of choice.

Here are the keytool commands for creating and exporting the keystore:

keytool.exe -genkeypair -alias "tomcat" -keyalg RSA -keysize 4096 -validity 3650 -keystore "C:\Program Files\Apache Software Foundation\Tomcat_folder\tomcat.keystore" ...


keytool.exe -certreq -alias tomcat -file "C:\Install\Tomcat\tomcat.csr" -keystore "C:\Program Files\Apache Software Foundation\Tomcat_folder\tomcat.keystore" ...
  1. Import Root and Intermediate Certificates: Use keytool.exe to import these into your keystore.
keytool.exe -import -alias root -keystore "C:\Program Files\Apache Software Foundation\Tomcat_folder\tomcat.keystore" ...

keytool.exe -import -alias intermediate -keystore "C:\Program Files\Apache Software Foundation\Tomcat_folder\tomcat.keystore" ...
  1. Restart Apache Tomcat: To apply all the changes.


CYC230126
Help Topics
ACE Support

Please Wait!

Please wait... it will take a second!