Please see attached PDF files. One is for Self Signed and the other is for a Trusted Authority(ex. Verisign)
Note: With version 11.5 or newer, there is a slight change to step 6:
Edit the follow section:
<!--
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150" SSLEnabled="true">
<SSLHostConfig>
<Certificate certificateKeystoreFile="conf/localhost-rsa.jks"
type="RSA" />
</SSLHostConfig>
</Connector>
-->
Instead of (which is in versions before 11.5):
keystoreFile="webapps\grouplink.bin"
keystorePass="ehelpdesk"
Use (which is in versions after 11.5):
certificateKeystoreFile="webapps\grouplink.bin"
certificateKeystorePassword="ehelpdesk"