1、生成证书,其中-alias后是别名,-keystore后是证书路径和名称
keytool -genkey -alias tomcat -keyalg RSA -keystore /etc/cas/keystore/tomcat.keystore
提示<What is your first and last name?>时必须输入 https域名,如:sso.gudao.red,
否则会报java.io.IOException: HTTPS hostname wrong: should be <sso.gudao.red>异常
2、导出证书到/etc/cas/keystore/tomcat.cer
keytool -export -alias tomcat -keystore /etc/cas/keystore/tomcat.keystore -storepass tomcat -rfc -file /etc/cas/keystore/tomcat.cer
3、证书导出之后便可导入到java中的cacerts证书库,默认密码changeit
keytool -import -alias tomcat -keystore cacerts -file /etc/cas/keystore/tomcat.cer -trustcacerts
4、删除证书
keytool -delete -alias tomcat -keystore /etc/cas/keystore/tomcat.keystore -storepass tomcat
keytool -genkey -alias tomcat -keyalg RSA -keystore /etc/cas/keystore/tomcat.keystore
提示<What is your first and last name?>时必须输入 https域名,如:sso.gudao.red,
否则会报java.io.IOException: HTTPS hostname wrong: should be <sso.gudao.red>异常
2、导出证书到/etc/cas/keystore/tomcat.cer
keytool -export -alias tomcat -keystore /etc/cas/keystore/tomcat.keystore -storepass tomcat -rfc -file /etc/cas/keystore/tomcat.cer
3、证书导出之后便可导入到java中的cacerts证书库,默认密码changeit
keytool -import -alias tomcat -keystore cacerts -file /etc/cas/keystore/tomcat.cer -trustcacerts
4、删除证书
keytool -delete -alias tomcat -keystore /etc/cas/keystore/tomcat.keystore -storepass tomcat