1 导出服务器证书(以chrome为例)
点击url栏不安全->证书->详细信息->复制到文件->Base64编码X.509—>下一步->浏览保存(这里我取名http2.cer)
2 利用ketool来导入证书到key store
cd http2.cer所在目录
# 如果已经存在旧的需要先删除
# keytool -delete -alias http2 -keystore "%JAVA_HOME%/jre/lib/security/cacerts" -storepass changeit
# 如果提示文件不存在
# keytool -delete -alias http2 -keystore "%JAVA_HOME%\lib\security\cacerts" -storepass changeit
# 导入证书
keytool -import -alias http2 -file http2.cer -keystore "%JAVA_HOME%\jre\lib\security\cacerts" -storepass changeit -trustcacerts
# 如果提示文件不存在
# keytool -import -alias http2 -file http2.cer -keystore "%JAVA_HOME%\lib\security\cacerts" -storepass changeit -trustcacerts
3 查看证书
keytool -list -alias http2 -keystore "%JAVA_HOME%\jre\lib\security\cacerts" -storepass changeit