1、通过浏览器访问网站,点击地址栏左侧锁标识(chrome是锁标识)手动导出二进制证书,命名为websitename.cer ,存放到D盘根目录。
2、通过jdk的keytool命令导入websitename.cer证书到JDK:
# keytool -import -keystore "%JAVA_HOME%\jre\lib\security\cacerts" -file D:\websitename.cer -alias websitename
3、keytool其它命令:
删除websitename证书:
# keytool -delete -alias websitename -keystore "%JAVA_HOME%/jre/lib/security/cacerts" -storepass changeit
查看cacerts中的所有证书:
# keytool -list -keystore "%JAVA_HOME%/jre/lib/security/cacerts" -storepass changeit
4、JDK自动导入证书方法见:https://www.oschina.net/question/12_19249