如果需要給Tomcat開啟Https�,首先我們需要一個證書,下面演示如何創建�。
創建證書
keytool -genkeypair -alias "tomcat" -keyalg "RSA" -keystore "localhost-rsa.jks"
后面的信息隨便輸入,我這里輸入的是:
Enter keystore password: Re-enter new password: What is your first and last name? [Unknown]: pichWhat is the name of your organizational unit? [Unknown]: pichWhat is the name of your organization? [Unknown]: tomcatWhat is the name of your City or Locality? [Unknown]: beijingWhat is the name of your State or Province? [Unknown]: beijingWhat is the two-letter country code for this unit? [Unknown]: cnIs CN=pich, OU=pich, O=tomcat, L=beijing, ST=beijing, C=cn correct? [no]: yEnter key password for <tomcat>(RETURN if same as keystore password): Re-enter new password:
這樣就會在當前目錄創建一個localhost-rsa.jks文件�。密碼是123456,別名是tomcat���。
給Tomcat配置證書
首先將上面生成的localhost-rsa.jks文件拷貝到Tomcat的conf目錄����,然后打開該目錄下面的server.xml文件��,找到如下代碼,原來是注釋了�����,現在需要打開注釋更改為如下內容:
然后重新啟動Tomcat��,訪問https://localhost:8443/
就可以看到如下頁面:
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" SSLEnabled="true" maxThreads="150" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreFile="conf/localhost-rsa.jks" keystorePass="123456" />
可以看到地址欄是顯示為不安全的���。因為這個證書是我們自己制作的�,瀏覽器默認不信任他,當然你可以手動信任他�。12306他們的證書差不多就是這樣制作的。
以上就是本文的全部內容�,希望對大家的學習有所幫助,也希望大家多多支持VEVB武林網����。
注:相關教程知識閱讀請移步到服務器教程頻道。
