1, configure the Tomcat SSL, if the correct access to https://localhost:8443/, that is, the SSL configuration is successfulOne, generate server key:To switch to directory%tomcat_home% as a command line, enter the command command line as follows (jdk1.4 with tools above):Keytool-genkey-alias tomcat-keyalg rsa-keypass ch
/ca-cert.pem-cakey ca/ca-key.pem-cacreateserial-days 3650
4. Export the certificate to a browser-supported. P12 Format:
D:/openssl>openssl pkcs12-export-clcerts-in Client/client-cert.pem-inkey client/client-key.pem-out client/ Client.p12
Password: Changeit
Four. Generate JKs files based on CA certificate
d:/openssl> keytool-keystore c:/openssl/bin/jks/truststore.jks-keypass 222222-storepass 222222-alias ca
Introduction to the configuration of CAS server and the configuration method of CAS Server Client
Because CAS requires HTTPS to communicate with the client, Tomcat must be configured to support SSL. To achieve SSL, A Web service must have an associated certificate for each external interface or IP address that accepts
Configure the Tomcat server to use SSL for encryption.First, Generate KeyStoreThe specific build mode is not spoken, and Tomcat supports the KeyStore format with JKS,PKCS11 and PKCS12JKS is the certificate store format generated by the Keytool tool in the Jdk/bin directory.PKCS12 is the format generated by the OpenSSL
-export-clcerts-in Client-cert.pem-inkey client-key.pem-out client.p12
Password: Changeit
To generate a JKs file from a CA certificate
Keytool-keystore truststore.jks-keypass 123456-storepass 123456-alias ca-import-trustcacerts-file ~/ca/ca-cert.pem
Import Certificate
Import Ca-cert.p12 as a trusted root certificate in the client browser, CLIENT.P12 as a
After the certificate is applied, an error is reported when you configure it to start Tomcat (under windwos ).
Connector attribute SSLCertificateFile must be defined when using SSL with APR
By viewing the tomcat7/webapps/docs/apr.html fileSet sslcertificatefile and sslcertificatekeyfile.In Windows, Tomcat can be starte
Reprint Address: http://ln-ydc.iteye.com/blog/1330674Content Overview:If you want Tomcat to support Https, the main task is to configure the SSL protocol1. Generate a security certificate2. Configure TomcatTo generate a security certificate:1.java Environment: Because Sun Company provides the tool to make the certificate
To enable the client to access WebService over https, You need to configure SSL for Tomcat and axis2. Configure the server and client respectively:
Server:
1. Generate a certificate on the server
Create the C:/CRT folder and execute the following command in the DOS window.
Cd c:/CRT
Generate the certificate: Server. j
1. Certificate Hierarchy2. Server architectureTomcat does not require authentication client, Nginx requires authentication client3. Tomcat configuration Attention PointThe CN of the server certificate for Tomcat must be tomcat_backend4. Nginx Configuration Attention PointExport PEM format Public key from PFX file using
1. Generate server key
Keytool-genkey-alias tomcat-keyalg RSA-keypass changeit-storepass changeit-keystore server. keystore-validity 3600F:/bak_e/downloads/safe/Tomcat + SSL> keytool-genkey-alias tomcat-keyalg RSA-KeYpass changeit-storepass changeit-keystore server. keystore-validity 3600What is your first name and las
Source:SSL Certificate and HTTPS application Deployment summary
In fact, large-scale Web sites have many Web servers and application servers, the user's request may be through varnish, haproxy, nginx before the application server, the middle of several layers. A typical deployment of small and medium sized deployments is the Nginx+tomcat two-tier configuration, while T
Tomcat HTTPS access configuration. Different Versions of Tomcat have different configurations. The following configurations are two-way authentication.
Requirements: have a certain understanding of Java certificates and certification tools (keytool, you can check the functions of keytool online ).
For Tomcat requirements, Tom
SSL BriefSSL is a Secure Sockets Layer, a technology that allows Web browsers and Web servers to communicate over secure connections. This is a two-way process, which means that the server and the browser encrypt all the exchanged data before sending the data.An important feature of SSL is that it requires authentication. This means that when you use a Web browser to access the server, the server provides a
Generally, Tomcat is only used as a request processor on Web servers such as Apache and ngnix. However, it is okay to use Tomcat as a front-end server for small applications. The following is a summary of some Tomcat configurations.
SSL configuration in NIO mode:
Step 1 create keysore:
%JAVA_HOME%\bin\keytool-genkey-a
Today, I will describe how to install an SSL Certificate for your personal website or blog on Ubuntu14.04 to protect the communication security between your visitors and the website. Secure Sockets Layer (SSL) is a standard security technology used to encrypt connections between websites and browsers. This ensures the
-native.tar.gz
Enter directory: tomcat-native-1.1.20-src/jni/native detailed installation See the building file in this directory to perform export JAVA_HOME=/PROG/JAVA/JDK set JDK execution:./ Configure--with-apr=/usr/bin--with-ssl=/usr/bin execution: Make
Execution: sudo make install--> installation to/usr/local/apr/lib execution: ln-s/usr/local/apr/lib/libtcna
After the end of the company project. The safety test after the pressure test. After the security test, there is a security risk to the data encryption problem in the network transmission.You need to configure SSL.Introduction to the SSL protocol: SSL or Secure Socket Layer is a technology that consents to Web browsers and webserver to communicate through a secure connection.This means that the data being s
.abstracthttp11protocol.init (abstracthttp11protocol.java:65) at Org.apache.catalina.connector.Connector.initInternal (connector.java:1010) ... 13morecausedby: java.io.ioexception:aliasnametomcatdoesnotidentifyakey entryatorg.apache.tomcat.util.net.jsse.jsseutil.getkeymanagers (jsseutil.java:213) at Org.apache.tomcat.util.net.AbstractJsseEndpoint.createSSLContext (abstractjsseendpoint.java:101) ... 20 more This problem is because the alias is not set, Tomcat
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.