HostOnNet Blog

Installing SSL on WSO2 Application Server

WSO2 is an Open Source Enterpise ready API and Application Server available fom

Inststruction for SSL certificate installation available at

First you need to Generate CSR and Private Key. Follow instructions at

Now you have .csr and .key files. Use the .csr file to purchase SSL certificate from your SSL provider.

Once your SSl is ready, upload it to the server running WSO2 Application Server.

Creating PFX file

We need to convert SSL certificate, private key and ca bundle into PFX file.

openssl pkcs12 -export -in  /root/ -inkey /root/ -name "wso2carbon" -certfile /root/bundle.crt -out

It will ask you to enter password, use “wso2carbon” for password. If you use anything different, you need to update file.

vi wso2esb/repository/conf/carbon.xml

I used default values.

            <!-- Keystore file location-->
            <!-- Keystore type (JKS/PKCS12 etc.)-->
            <!-- Keystore password-->
            <!-- Private Key alias-->
            <!-- Private Key password-->

Creating JKS file


rm -rf /root/wso2esb/repository/resources/security/wso2carbon.jks
keytool -importkeystore -srckeystore boby.pfx -srcstoretype pkcs12 -destkeystore /root/wso2esb/repository/resources/security/wso2carbon.jks -deststoretype JKS

Restart WSO2 Application Server

~/wso2esb/bin/ stop
~/wso2esb/bin/ start

Posted in Linux