一、去阿里云服务器上免费申请ssl证书,下载之后打开文件包存在两个文件,一个是pfx文件,一个是密码文件,执行命令得到 jks文件。
keytool -importkeystore -srckeystore *.pfx -destkeystore *.jks -srcstoretype PKCS12 -deststoretype JKS
二、tomcat服务器需要8.5以上的版本,配置下server.xml
<Connector port="443" protocol="org.apache.coyote.http11.Http11Nio2Protocol" defaultSSLHostConfigName="domain1"
maxThreads="150" SSLEnabled="true" >
<SSLHostConfig hostName="domain1">
<Certificate certificateKeystoreFile="/var/www/ca/aa.jks" certificateKeystorePassword="password1" type="RSA" />
</SSLHostConfig>
<SSLHostConfig hostName="domain2">
<Certificate certificateKeystoreFile="/var/www/ca/bb.jks" certificateKeystorePassword="password2" type="RSA" />
</SSLHostConfig>
</Connector>
<Host name="domain1" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain1"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
<Host name="domain2" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain2"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
三、配置好启动服务
