首先,將ssl證書相關文件復制到tomcal/ssl文件夾下。然后打開 tomcat/conf/server.xml,將其相關的 8443 改成 443 端口,然后將以下節點的注釋去掉。修改內容。
<Connector port="443" protocol="org.apache.coyote.http11.Http11AprProtocol"
maxThreads="500" SSLEnabled="true" >
<UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" />
<SSLHostConfig>
<Certificate certificateKeyFile="ssl/private.key"
certificateFile="ssl/public.crt"
certificateChainFile="ssl/intermediate.crt"
type="RSA" />
</SSLHostConfig>
</Connector>
配置 server.xml 文件后,還需要安裝 openssl,apr,apr-util,tomcat-native 等庫,tomcat 沒有自帶這些庫。如果未安裝這些類庫,啟動 tomcat 會報這些錯誤:
org.apache.catalina.core.AprLifecycleListener.lifecycleEvent The APR based Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path:
安裝方法如下:
yum -y install openssl yum -y install apr yum -y install apr-util yum -y install tomcat-native
安裝完畢后,重啟 tomcat 即可。