转自:http://blogs.dfwikilabs.org/pigui/2007/12/10/configuring-tomcat-55-for-ssl-using-openssl/
This post explains step by step actions to enable SSL in Tomcat
- Generate an RSA key for signing the certificate:
openssl genrsa -out key.pem 2048
- Generate a certificate using the new key:
openssl req -new -x509 -key key.pem -out cert.pem -days 365
Answer the quesstions with your name, organization name, e-mail, etc.
- Since the certificate is in PEM format, convert it to PKCS12 for Tomcat:
openssl pkcs12 -export -in cert.pem -inkey key.pem -out cert.p12 -name tomcat
Enter a password, don’t leave it blank.
- Edit $TOMCAT_HOME/conf/server.xml and modify the SSL connector:
<Connector port="8443" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" debug="0" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreType="PKCS12" keystoreFile="conf/cert.p12" keystorePass="password"/>
Remember to change password with the one typed at 3.
Note: DON’T use a self-signed certificate in a PRODUCTION SITE! Contact with a CA to sign your certificate.
相关推荐
You will find details for using Tomcat on all major platforms, including Windows, Linux, OS X, Solaris, and FreeBSD, along with specifics on Tomcat configuration files, and step-by-step advice for ...
### 配置TwinCAT以控制AM335x #### 一、引言 本文主要介绍了如何利用运行在PC上的TwinCAT软件来控制基于AM335x的EtherCAT从控制器,并监控其输入信号。TwinCAT是贝加莱(Beckhoff)公司的一款软件系统,它能够将...
Chapter03 "Configuring Tomcat"讲解了如何配置Tomcat服务器,包括server.xml、web.xml等核心配置文件的作用,以及如何调整这些设置来优化服务器性能,例如线程池大小、上下文路径、session管理等。 Chapter05 ...
Bulletproof SSL and TLS by Ivan Ristić Table of Contents Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
3. **SSL第4层回退配置**:如果使用SSL进行加密通信,则需要配置SSL第4层回退选项,以处理非SSL连接的情况。 4. **服务器故障转移配置**:定义服务器发生故障时的行为,比如将客户端重定向到其他可用服务器。 5. **...
本手册旨在指导用户在 Linux 环境中安装和配置 Tomcat 服务器, step-by-stepguiding users through the process of installing and configuring Tomcat on a Linux environment. 知识点一:下载和安装 Tomcat 在...
### 如何在Tomcat下配置RAD #### 一、引言 本文将详细介绍如何在Tomcat服务器环境下配置RAD(Rational Application Developer),帮助开发者更好地利用IBM Rational Application Developer进行Web应用程序的开发与...
============================================ <br>Out of the box, Tomcat 5.5 requires the Java 2 Standard Edition Runtime Environment (JRE) version 5.0 or later. However, you can also run Tomcat...
NAV350 报文解析 Telegram_listing_Telegrams_for_Configuring_and_Operating_the_NAV350_
Configuring_Security_Features.pdf Creating_Pictures_v2.pdf Creating_Recipes.pdf Discovery_and_Auto_Assembly_Component.pdf Driver_Server_Help.pdf Enhanced_Failover.pdf Getting_Started_with_iFIX.pdf ...
根据给定的文件信息,可以提取以下知识点: 1. 终端服务会话中InTouch应用程序的配置:在终端服务器节点上使用InTouch应用程序时,需要为每个用户配置属性设置。 2. InTouch会话动态分辨率转换:该技术笔记介绍了...
### AN12900: Secure Over-the-Air Prototype for Linux Using CAAM and Mender #### 1. Introduction Over-the-Air (OTA) updates represent an efficient method for Original Equipment Manufacturers (OEMs) ...
Syngress - Configuring IPv6 for Cisco IOS(2002) 配置IPv6
Configuring CanTp using ConfGen RTA-CARv12.0.1.pdf
sap press doc 解压密码:abap_developer
Lab 04 - Configuring and Using LS 2010 Unified Conferencing.pdf
A common problem for administrators of IIS servers is configuring and troubleshooting SSL enabled websites. To assist in administrators efforts, Microsoft has designed a tool - SSL Diagnostics - to ...
### 高可用集群配置:HACMP 4.5 的应用与实践 #### 概述 本IBM红皮书旨在提供关于使用HACMP(High Availability Cluster Multi-Processing)版本4.5配置高可用集群的技术信息。特别关注的是在IBM eServer pSeries ...