Run the following command to create self-signed certificate:

"${JAVA_HOME}/bin/keytool" -genkey \
-keyalg RSA \
-alias mtitek \
-keystore /opt/cert/keystore \
-dname "CN=localhost, OU=mtitek, O=mtitek, L=Montreal, ST=QC, C=CA" \
-keypass kp123456 \
-storepass sp123456 \
-validity 9999

Notes:
▸ CN: Common Name (First and last name)
▸ OU: Organizational Unit
▸ O: Organization
▸ L: City or Locality
▸ ST: State or Province
▸ C: two-letter country code

▸ storepass: keystore password (is used to access the keystore)
▸ keypass: key password (is used to access a certificate within the keystore)

Run the following command to verify that the certificate was created properly:

"${JAVA_HOME}/bin/keytool" -list -v -keystore /opt/cert/keystore

Output:

Enter keystore password: sp123456

Keystore type: JKS
Keystore provider: SUN

Your keystore contains 1 entry

Alias name: mtitek
Creation date: 31-Oct-2015
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=localhost, OU=mtitek, O=mtitek, L=Montreal, ST=QC, C=CA
...

Edit "${TOMCAT_HOME}/conf/server.xml".
Add the https connector:

<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
    maxThreads="150"
    scheme="https"
    secure="true"
    SSLEnabled="true"
    clientAuth="false"
    sslProtocol="TLS"
    keystoreFile="/opt/cert/keystore"
    keyAlias="mtitek"
    keystorePass="sp123456"
    keyPass="kp123456" />

Browser: https://localhost:8443