Configure SSL with certificate stored in Windows

I have a certificate used by a Windows MVC web-site on IIS/Windows Server 2012 R2 . It is stored in the Windows Certificate Store under “Personal/Certificates” for the Local Computer. I have a Lucee site running on TomCat that I want to use the same exact SSL certificate. How would I do this? Not sure how to configure the in the Server.xml for such a certificate.

as tomcat to IIS are only communicating over localhost, you only need to have IIS to doing the encryption

Both web-sites are using the same exact sub-domain (, except that I am specifying the port (8888) for the Lucee site. When I try to use https in my browser, I am getting this error:

An error occurred during a connection to SSL received a record that exceeded the maximum permissible length. Error code: SSL_ERROR_RX_RECORD_TOO_LONG

so I thought I had to configure the SSL in tomcat.

OK, so I opened up port 8443 on my web-server…now when I browse to, it is timing out. I have not modified my Tomcat server.xml file yet, because almost everything I find online for this first talks about creating an SSL Certificate and then using the configuration details in Tomcat.

Where do I go from here to get my Tomcat to use https with the certificate from the windows certificate store ?

any reason why you want to directly expose tomcat to the web?

the recommended, standard approach is to leave a IIS handling all the requests and having it passing off any cfml requests to tomcat

I have a production web server that has a live site written in C#/MVC which uses SSL/Port 443. This SSL certificate is specific to This web server also has Lucee, which up to now I have been using unsecurely with I need to secure the Lucee site with the same exact certificate (stored in the Windows certificate store) used by the MVC site.

the standard way to do this is to use mod_cfml and the boncode connector

then all your C#, cfml and everything else (html, css, js etc) requests will all be served via the same IIS site

I need to use the same subdomain for both the MVC site and the Lucee site ( because of the SSL certificate. When I tried using mod_cfml and the boncode connector, it didn’t play nicely with my MVC site in IIS. That is why I am using Tomcat alone to serve Lucee.

what problems did you encounter?

This was months ago so I don’t remember exactly. I just know that my MVC site was encountering some erratic behavior without any changes to any code whatsoever.