1. Generate a self-signed certificate or purchase a certificate issued by a CA.
2. Export the certificate and private key to a PEM format file.
3. Configure Tomcat's server.xml file, add connector elements, and specify parameters, such as SSL protocol, path and password of certificate and private key.
4. Restart Tomcat and check the log to ensure that the SSL connection has been successfully established.