# How to Replace DualShield's SSL Certificate

DualShield's SSL certificate is specified in the "server.xml" file located in the folder: "C:\Program Files\Deepnet DualShield\tomcat\conf\"

In the "server.xml" file you can find the following text:

```    <Connector protocol="HTTP/1.1" SSLEnabled="true"
port="8072"
scheme="https" secure="true" clientAuth="false"
keystoreFile="C:\Program Files\Deepnet DualShield/certs/allinone.pfx"
keystorePass="changeit" keystoreType="PKCS12"  sslProtocol = "TLS" />```

In the above example, the certificate is called "allinone.pfx" which is located in the folder C:\Program Files\Deepnet DualShield/certs, and its password is "changeit".

To use your own SSL certificate, replace the value of "keystoreFile" with the file path of your certificate, and the value of "keystorePass" with your password.

DualShield uses 5 ports from 8072 to 8076, therefore there are 5 occurrences of the certificate settings in the server.xml. You will need to change all of them in the same way.

You can imagine, the simplest way is, use the same password on the new PFX certificate file, then just overwrite the existing certificate file "allinone.pfx" with the new PFX file. That case, you don't need to modify the file server.xml at all.

Don't forget to restart DualShield service afterwards.

• Page:
• Page: