We have a web server running Apache Tomcat 8.5. On this server we have a keystore created with a keystore password. The keystore is securing the website with TLS connection.
a. We want to encrypt the connection between the application server and the web server. In the application installation, we need to specify: keystore (jks file), keystore password, Truststore (file), and Truststore password. I do not believe a Truststore exists, how do I see if a Truststore was created on the server? Also, if a Truststore is not created, how do I create a Truststore?
b. If I create a Truststore, will the link to the web application remain working as usual on the Tomcat server as this is already only using a Keystore? Are any updates needed to the server.xml file? The server.xml file is updated with the Keystore information. We only want to create a Truststore to secure the connection between the servers.
I am expecting to secure the connection between the application server and the web server by TLS connection. Currently, this has a keystore and may also need a Truststore .