The Certificate Management Utility (CMU) helps create and manage Java-standard keystores, their private keys, and certificates. With the CMU, you can:
Generate a new self-signed certificate and certificate signing request based on provided X 509 Distinguished Name information.
Import an existing certificate and private key pair into a keystore.
Migrate a certificate into a keystore.
The CMU also lets you replace either an expired certificate with an up-to-date version, or a self-signed certificate with one duly signed by a trusted Certificate Authority (CA).
Launch the utility by clicking on the button for the relevant application.
Note: You cannot run the CMU if you have not enabled your Tomcat service to support SSL.