Skip to content

Recreating self-signed SSL certificates on a Matillion ETL instance


If you have encountered problems when adding your own certificates to a Matillion ETL instance, you may wish to recreate the self-signed certificates that come "out of the box" with a new Matillion ETL instance. Recreating a self-signed certificate will allow you to add your own certificates by clicking AdminSSL.

How to recreate a self-signed SSL certificate

  1. SSH into your Matillion ETL instance.
  2. Issue the following commands:

  3. sudo su - root

  4. openssl req -nodes -new -x509 -subj "/C=GB" -keyout /usr/share/tomcat/conf/localhost.key -out /usr/share/tomcat/conf/localhost.crt
  5. chown -R tomcat: /usr/share/tomcat/conf/localhost.*
  6. chmod g+w /usr/share/tomcat/conf/localhost.*
  7. service tomcat restart

:::info{title='Note'} These commands are only valid for instances of Matillion ETL that store their certificates in the following location: /usr/share/tomcat/conf/ :::


Watch our video guide to using an SSL HTTPS certificate to learn more.