Skip to main content Skip to complementary content

Configure TLS/SSL in Talend Administration Center


  1. Create a keystore containing a self signed certificate using the command:
    keytool -genkey -keyalg RSA -alias tac-tomcat -keystore tac-tomcat-keystore.jks -storepass tacadmin -validity 3600 -keysize 2048
  2. Open the following file:
  3. Configure Apache Tomcat to use this keystore by adding the following lines:
    <!-- Define an SSL Coyote HTTP/1.1 Connector on port 8443 -->
    port="8443" maxThreads="200"
    scheme="https" secure="true" SSLEnabled="true"
    keystoreFile="conf/tac-tomcat-keystore.jks" keystorePass="tacadmin"
    clientAuth="false" sslProtocol="TLS"/>
  4. Comment the non-SSL part.
    <Connector executor="tomcatThreadPool"
    port="8080" protocol="HTTP/1.1"
    redirectPort="8443" />
  5. Add the keystore certificate to Apache Tomcat trustore.
    #export certificate into .cert file
    keytool -keystore tac-tomcat-keystore.jks -alias tac-tomcat -export -file tac-tomcat.cert
    #import certificate into jks
    keytool -keystore tac-tomcat-truststore.jks -alias tac-tomcat -import -file tac-tomcat.cert
    This is necessary to avoid the following exception:
    Caused by: unable to find valid certification path to requested target during user authentication.
  6. Add keystoreFile and keystorePass parameters and values.
  7. Open the following file:
  8. Change the line
    set "JAVA_OPTS=%JAVA_OPTS% -Xmx4096m -Dfile.encoding=UTF-8"
    set "JAVA_OPTS=%JAVA_OPTS% -Xmx4096m -Dfile.encoding=UTF-8$CATALINA_HOME/conf/tac-tomcat-truststore.jks"
  9. Restart Talend Administration Center.

    Check the Talend Administration Center URL with the following address: https://localhost:8443/org.talend.administrator.

    For more information, see

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!