Unable to access Keycloak on port 8443

Hey folks

Setting up a standalone Keycloak on Hyper-V using CentOS 8. Keycloak is installed, port 8080 has been opened in firewalld and the application is accessible at:
http://keycloak.mydomain.com:8080/auth

I have been through the process of getting a SSL from Let’s Encrypt, made that into pkcs12 format, imported into a keystore and adjusted the xml accordingly.

However, despite opening port 8443 in firewalld, when trying to access:
https://keycloak.mydomain.com:8443/auth
I’m getting “can’t connect to the server”

I did a port scan with Network Utility and it finds 8080 as open but does not find 8443 open. I think this means no service is trying to use this port?

What am I missing to get access via 8443/SSL?

Many thanks for any pointers. If I’ve not provided enough info, please ask.

Figured it out. In the instructions in the documentation, when you add the below, be sure to add the alias and key-pass as well:

<security-realm name="UndertowRealm">
    <server-identities>
        <ssl>
            <keystore path="keycloak.jks" relative-to="jboss.server.config.dir" keystore-password="secret" alias="ALIAS_OF_YOUR_KEY" key-password="PASSWORD_FOR_YOUR_KEY" />
        </ssl>
    </server-identities>
</security-realm>

Also, when you update the section part in the instructions:

<subsystem xmlns="urn:jboss:domain:undertow:11.0">
   <buffer-cache name="default"/>
   <server name="default-server">
      <https-listener name="https" socket-binding="https" security-realm="UndertowRealm"/>
   ...
</subsystem>

Look a few lines below and change this from ApplicationRealm to UndertowRealm:
<http-invoker security-realm="UndertowRealm"/>