獲取證書
進入jdk安裝目錄或者配置了jdk環境變量
keytool -genkey -alias tomcat -keyalg RSA -keystore /mnt/apache-tomcat-7.0.56/conf/.keystore
/mnt/apache-tomcat-7.0.56/conf/.keystore 證書存放路徑
輸入密鑰庫口令:Jac1@#kie
再次輸入新口令: Jac1@#kie
您的名字與姓氏是什么?
[Unknown]: jackie cheng
您的組織單位名稱是什么?
[Unknown]: ideal
您的組織名稱是什么?
[Unknown]: jc
您所在的城市或區域名稱是什么?
[Unknown]: shanghai
您所在的省/市/自治區名稱是什么?
[Unknown]: shanghai
該單位的雙字母國家/地區代碼是什么?
[Unknown]: CN
CN=jackie cheng, OU=ideal, O=jc, L=shanghai, ST=shanghai, C=CN是否正確?
[否]: y
輸入 <tomcat> 的密鑰口令
(如果和密鑰庫口令相同, 按回車):
名字與姓名輸入域名(例如:localhost)
配置tomcat
修改tomcat\config\server.xml
<!--<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/data/tomcat8.0.53/ssl/keystore"
keystorePass="123456"
/>-->
<Connector port="8443" protocol="HTTP/1.1"
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/data/tomcat8.0.53/ssl/.keystore"
keystorePass="123456"
/>
<!-- Define an AJP 1.3 Connector on port 8009 -->
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
<!-- An Engine represents the entry point (within Catalina) that processes
every request. The Engine implementation for Tomcat stand alone
analyzes the HTTP headers included with the request, and passes them
on to the appropriate Host (virtual host).
Documentation at /docs/config/engine.html -->
keystoreFile="/data/tomcat8.0.53/ssl/.keystore" 證書存放位置
keystorePass="123456" 證書密碼
配置完成后,重啟TOMCAT后即可以使用SSL。IE地址欄中可以直接輸入地址 “https:ip:8443//”。