In This tutorial, We will try to Generate a CSR and Install it into JBoss Webserver.

Here is the simple steps how to do this:
Login as Administrator via remote desktop connection

[code]Click Start > Run > cmd [/code]

We need to set path to JAVA_HOME, you can just copy paste into the command box.
[code]c:\>set path=%path%;%JAVA_HOME%\bin\[/code]

Create jboss-ssl directory
[code]c:\>mkdir jboss-ssl[/code]

Change directory to jboss-ssl
[code]c:\>cd jboss-ssl
c:\jboss-ssl> [/code]

Generate Key.Store with Keytool & Generate CSR
[code]c:\jboss-ssl>keytool -genkey -alias tomcat -keyalg RSA  -keystore test.keystore [/code]

[code]What is your first and last name?
  []:  test.wowtutorial.org
What is the name of your organizational unit?
  [IS]:  IT
What is the name of your organization?
  [Wowtutorial]:
What is the name of your City or Locality?
  [Seattle]:
What is the name of your State or Province?
  [Seattle]:
What is the two-letter country code for this unit?
  [US]:
Is CN=test.wowtutorial.org, OU=IT, O=Wowtutorial, L=Seattle, ST=Seattle,  C=US correct?
  [no]:  yes

Password : wowtutorial [/code]

p.s : all those information will save in test.keystore
Next we need to Generate CSR from test.keystore.

[code]c:\jboss-ssl>keytool -certreq -keyalg RSA -alias tomcat -file test.csr -keystore test.keystore
Input password : wowtutorial [/code]

p.s:  CSR info will save in this file test.csr

Next ....We nee to  PURCHASE SSL from Geocert,Verisign,Digicert,etc. They will help us to Generate CERTIFICATE.
After we have your brandnew CERTIFICATE. we need to import the CERTIFICATE AUTHORITY to the keystore. We can download CAcert.cer from Certificate Authority website or we also can found the CAcert.cer included in the email that we just purchased the new cert.

Save the file and name it CAcert.cer (CERTIFICATE AUTHORITY)
[code]c:\jboss-ssl>keytool -import -alias root -keystore test.keystore -trustcacerts -file CAcert.cer
Input password : wowtutorial [/code]

Next, We need to import the brandnew certificate that we just purchase and name it test.cer
[code]c:\jboss-ssl>keytool -import -alias tomcat -keystore test.keystore -trustcacerts -file test.cer
Input password : wowtutorial [/code]

If there is no error message. we good to go.

Next is copy a test.keystore to jboss conf directory
[code]c:\jboss-ssl>copy test.keystore c:\jboss-4.0.0\conf\ [/code]

Last step is to modify JBoss Webserver server.xml to also listen on port 443.
[code]c:\jboss-ssl>edit c:\jboss-4.0.0\server\default\deploy\jbossweb-tomcat50.sar\server.xml [/code]

Modify the server.xml like the sample below :

[code]<Connector port="443" address="${jboss.bind.address}"
           maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
           scheme="https" secure="true" clientAuth="false"
           keystoreFile="${jboss.server.home.dir}/conf/test.keystore"
           keystorePass="iraqredcrescent" sslProtocol = "TLS" /> [/code]

Save and exit.

Restart JBoss server.
Click Start > Administrative tools > Services > JBoss Application Server
Right click on JBoss Application Server and Click Restart.

Test it out with IE/Mozilla.
[code]https://test.wowtutorial.org [/code]

If there is no Certificate Authority Unknown error. It's mean we've successfully installed SSL on JBoss Application Server.