contos | linux ，证书多域名配置tomcat+nginx。

nginx   每个域名多一个server， 把里面的ip改一下，ssh证书地址密码改一下即可

    server {
        listen       80;
        listen       443 ssl;
        ssl off;
        server_name  sh.aaa.com www.aaa.com;
        ssl_certificate /mydata/ssl/sh/6785428_sh.aaa.com.key;
        ssl_certificate_key /mydata/ssl/sh/6785428_sh.aaa.com.pem;
        client_max_body_size 10M;
        

        #charset koi8-r;
        location / {
        proxy_pass http://localhost:8080;
        proxy_set_header   Host    $host;
        proxy_set_header   X-Real-IP   $remote_addr;
        proxy_set_header   X-Forwarded-For $proxy_add_x_forwarded_for;
        }

        location  ^~ /static/ {
        alias /mydata/nginx/html/;
        #try_files $uri $uri/ index.html;
        index  index.html index.htm;
        }
        #access_log  logs/host.access.log  main;

        #location / {
        #    root   html;
        #    index  index.html index.htm;
        #}

        #error_page  404              /404.html;

        # redirect server error pages to the static page /50x.html
        #
        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
        }

    }

2 tomcat 配置。 修改server.xml

   <Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
               maxThreads="150" SSLEnabled="true" defaultSSLHostConfigName="www.sh.aaa.com" >
        <SSLHostConfig hostName="www.sh.aaa.com">
            <Certificate certificateKeystoreFile="/mydata/ssl/sh/6785428_sh.aaa.com.pfx"
			 certificateKeystorePassword="wmTOSP5c"
                         certificateKeystoreType="PKCS12" />
        </SSLHostConfig>
        <SSLHostConfig hostName="www.lb.bbbb.com">
            <Certificate certificateKeystoreFile="/mydata/ssl/hc/6663490_lb.aaa.com.pfx"
			 certificateKeystorePassword="d4KW4ylh"
                         certificateKeystoreType="PKCS12" />
        </SSLHostConfig>
    </Connector>