堆栈内存溢出
  简体   繁体   English

如何在RHEL上的Tomcat 7上启用SSL / HTTPS

[英]How to Enable SSL/HTTPS on Tomcat 7 on RHEL

 原文  2013-03-11 11:11:23       java/ linux/ ssl-certificate/ redhat/ rhel

问题描述

I have a Java application which I am running on RHEL server. 我有一个Java应用程序,我在RHEL服务器上运行。 I want to enable SSL on tomcat 7 on RHEL. 我想在RHEL上的tomcat 7上启用SSL。 I am following this tutorial . 我正在学习本教程

I used this command to to create a self-signed certificate. 我使用此命令创建自签名证书。 

keytool -genkey -alias mkyong -keyalg RSA -keystore c:\mkyongkeystore

But on running https://localhost:8443/ I am not getting anything and I am enable to configure Tomcat to support SSL Or https. 但在运行https://localhost:8443/我没有得到任何东西,我启用配置Tomcat以支持SSL或https。

1 个解决方案

解决方案1
 3 已采纳  2013-03-13 13:12:50

A) Create a keystore file to store the server's private key and self-signed certificate by executing the following command: A)通过执行以下命令创建密钥库文件以存储服务器的私钥和自签名证书:

keytool -genkey -alias tomcat -keyalg RSA -keystore /etc/tomcat6/keystore keytool -genkey -alias tomcat -keyalg RSA -keystore / etc / tomcat6 / keystore

B) Uncomment the "SSL HTTP/1.1 Connector" entry in /etc/tomcat6/server.xml and modify as described in the Configuration section below (this is only an example, edit your own configuration and just uncomment it and provide the correct password). B)取消注释/etc/tomcat6/server.xml中的“SSL HTTP / 1.1 Connector”条目,并按照下面的Configuration部分所述进行修改(这只是一个示例,编辑您自己的配置,只需取消注释并提供正确的密码)。 

<!-- Define a SSL HTTP/1.1 Connector on port 8443
     This connector uses the JSSE configuration, when using APR, the
     connector should be using the OpenSSL style configuration
     described in the APR documentation -->

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
           maxThreads="150" scheme="https" secure="true"
           clientAuth="want" SSLProtocol="TLS"
           keystoreFile="conf/keystore"
           truststoreFile="conf/keystore"
           keystorePass="XXXXXX"
           keystoreType="PKCS12"
           ciphers="SSL_RSA_WITH_3DES_EDE_CBC_SHA,
                TLS_RSA_WITH_AES_256_CBC_SHA,
                TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA,
                TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA,
                TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA,
                TLS_ECDH_RSA_WITH_AES_128_CBC_SHA,
                TLS_ECDH_RSA_WITH_AES_256_CBC_SHA,
                TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA,
                TLS_ECDH_anon_WITH_AES_128_CBC_SHA,
                TLS_ECDH_anon_WITH_AES_256_CBC_SHA"
           truststorePass="XXXXXXXXXXXXXXX" />

C) If you are using selinux, you may need to relabel newly created keystore file context. C)如果您使用的是selinux,则可能需要重新标记新创建的密钥库文件上下文。 Use RHEL SELinux guide how to do that. 使用RHEL SELinux指南如何做到这一点。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何在具有Https / ssl的tomcat服务器中启用GZIP - How to enable GZIP in my tomcat server having Https/ssl 如何在Tomcat服务器上为多个应用程序启用HTTPS - How to enable HTTPS on tomcat server for multiple applications 嵌入式Tomcat启用SSL - Embedded Tomcat enable SSL 配置Tomcat以支持SSL或https - configure Tomcat to support SSL or https 如何在Spring Boot应用程序中启用HTTPS,该应用程序在Tomcat中作为WAR文件部署? - How to enable HTTPS in a Spring Boot application, deployed as WAR file in Tomcat? 如何在tomcat 8嵌入式javascript / json / java webapp上启用ssl - how to enable ssl on tomcat 8 embedded javascript/json/java webapp 密码套件不可用 - 如何添加/启用? Tomcat SSL - Cipher suite not available - how to add/enable? Tomcat SSL Eclipse WTP:如何在Tomcat上启用SSL? - Eclipse WTP: How do I enable SSL on Tomcat? 如何为 Tomcat 本机/APR SSL 启用调试日志记录 - How to enable debug logging for Tomcat native/APR SSL Spring Boot - 使用 CA 证书启用 SSL (HTTPS) - Spring Boot - Enable SSL (HTTPS) with CA certificate
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM