一、去阿里雲服務器上免費申請ssl證書,下載之后打開文件包存在兩個文件,一個是pfx文件,一個是密碼文件,執行命令得到 jks文件。
keytool -importkeystore -srckeystore *.pfx -destkeystore *.jks -srcstoretype PKCS12 -deststoretype JKS
二、tomcat服務器需要8.5以上的版本,配置下server.xml
<Connector port="443" protocol="org.apache.coyote.http11.Http11Nio2Protocol" defaultSSLHostConfigName="domain1"
maxThreads="150" SSLEnabled="true" >
<SSLHostConfig hostName="domain1">
<Certificate certificateKeystoreFile="/var/www/ca/aa.jks" certificateKeystorePassword="password1" type="RSA" />
</SSLHostConfig>
<SSLHostConfig hostName="domain2">
<Certificate certificateKeystoreFile="/var/www/ca/bb.jks" certificateKeystorePassword="password2" type="RSA" />
</SSLHostConfig>
</Connector>
<Host name="domain1" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain1"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
<Host name="domain2" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain2"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
三、配置好啟動服務