Apache2
确保openssl已经正常安装
sudo apt install openssl
准备签名文件
CERTIFICATE_FILE_PATH=path/to/your/certificate
sudo mkdir /etc/apache2/ssl
sudo cp ${CERTIFICATE_FILE_PATH}/* /etc/apache2/ssl
sudo chmod 0755 /etc/apache2/ssl/*
管理SSL端口服务
sudo a2enmod ssl #开启模块
# sudo a2dismod ssl #关闭模块
配置SSL证书文件
CERTIFICATE_FILE_PATH=path/to/your/certificate
SSL_CONFIG_FILE=/etc/apache2/sites-available/default-ssl.conf
KEY_FILE=$(basename `find ${CERTIFICATE_FILE_PATH} -name "*.key"`)
CHAIN_FILE=$(basename `find ${CERTIFICATE_FILE_PATH} -name "*chain.crt"`)
PUBLIC_FILE=$(basename `find ${CERTIFICATE_FILE_PATH} -name "*public.crt"`)
sudo sed -i '/[\t#]\+SSLCertificateKeyFile/c\\t\tSSLCertificateKeyFile '${CERTIFICATE_FILE_PATH}/${KEY_FILE} ${SSL_CONFIG_FILE}
sudo sed -i '/[\t#]\+SSLCertificateChainFile/c\\t\tSSLCertificateChainFile '${CERTIFICATE_FILE_PATH}/${CHAIN_FILE} ${SSL_CONFIG_FILE}
sudo sed -i '/[\t#]\+SSLCertificateFile/c\\t\tSSLCertificateFile '${CERTIFICATE_FILE_PATH}/${PUBLIC_FILE} ${SSL_CONFIG_FILE}
启用SSL证书文件
# 创建SSL配置文件链接
sudo ln -s /etc/apache2/sites-available/default-ssl.conf /etc/apache2/sites-enabled/001-ssl.conf
# 重新加载Apache配置文件
sudo /etc/init.d/apache2 force-reload
# 重新启动Apache服务
sudo /etc/init.d/apache2 restart
Nginx
Tomcat