In order to connect to CloverETL Server via https when Designer does not need to have its own certificate, you only need to create a server keystore.

To generate this key, execute the following script (version for Unix) in the bin subdirectory of JDK or JRE where keytool is located:

keytool -genkeypair -alias server -keyalg RSA -keystore ./serverKS.jks \
        -keypass p4ssw0rd -storepass p4ssw0rd -validity 900 \
        -dname "cn=localhost, ou=ETL, o=Javlin, c=CR"

(In these commands, localhost is the default name of your CloverETL Server, if you want any other Server name, replace the localhost name in these commands by any other hostname.)

After that, copy the serverKS.jks file to the conf subdirectory of Tomcat.

Then, copy the following code to the server.xml file in this conf subdirectory:

<Listener className="org.apache.catalina.core.AprLifecycleListener" 
          SSLEngine="off" />
          
          
<Connector port="8443" maxHttpHeaderSize="7192"
          maxThreads="150" minSpareThreads="25"
          enableLookups="false" disableUploadTimeout="true"
          acceptCount="100" scheme="https" secure="true"
          clientAuth="false" sslProtocol="SSL"
          SSLEnabled="true"
          protocol="org.apache.coyote.http11.Http11NioProtocol"
          keystoreFile="pathToTomcatDirectory/conf/serverKS.jks"
          keystorePass="p4ssw0rd"
/>

Now you can run CloverETL Server by executing the startup script located in the bin subdirectory of Tomcat.

And, when you start your CloverETL Designer, you will be able to create your CloverETL Server projects using the following default connection to Server: https://localhost:8443/clover where both login name and password are clover.

You will be prompted to accept the Server certificate. After which, you are allowed to create a CloverETL Server project.