參考網址:http://www.micmiu.com/enterprise-app/sso/sso-cas-sample/#viewSource
1.生成證書
keytool -genkey -alias ssodemo -keyalg RSA -keysize 1024 -keypass michaelpwd -validity 365 –keystore d:\sso\ssodemo.keystore -storepass michaelpwd
注意:輸入您的名字與姓氏是什么? 和你的域名保持一致!keypass 和 storepass 兩個密碼要一致
2.導出證書
keytool -export -alias ssodemo –keystore d:\sso\ssodemo.keystore –file d:\sso\ssodemo.crt -storepass michaelpwd
輸入的密碼是上一步驟的密碼。
3.導入證書到JRE
keytool -import -keystore %JAVA_HOME%\jre\lib\security\cacerts –file d:\sso\ssodemo.crt -alias ssodemo
輸入的密碼是:changeit 這是Java的要求!
4.配置tomcat
這段默認是注釋的,去掉注釋,照如下配置
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="d:/sso/ssodemo.keystore" keystorePass="michaelpwd"
clientAuth="false" sslProtocol="TLS" URIEncoding="UTF-8">
</Connector>