1.创建私钥和证书:
keytool -genkeypair -alias tomcat -keyalg RSA -keystore /usr/local/tomcat/keystore
提示输入密码 123456
- //-genkeypair 生成密钥对
- //-alias tomcat 密钥别名
- //-keyalg RSA 定义密钥算法为RSA算法
- //-keystore 定义密钥文件存储在:/usr/local/tomcat/keystore
2.修改配置文件:
[root@web1 ~]# vim /usr/local/tomcat/conf/server.xml
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
keystoreFile="/usr/local/tomcat/keystore" keystorePass="123456" clientAuth="false" sslProtocol="TLS" />
- //备注,默认这段Connector被注释掉了,打开注释,添加密钥信息即可
3.重起tomcat服务器:
/usr/local/tomcat/bin/shutdown.sh
/usr/local/tomcat/bin/startup.sh
ss -ntulp | grep java
4.测试文件:
firefox https://www.a.com:8443
firefox https://www.b.com:8443
firefox https://192.168.2.100:8443
配置日志文件:
为每个虚拟机配置不同的虚拟机:
[root@web1 ~]# vim /usr/local/tomcat/conf/server.xml
prefix=" b_access" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
:wq
2.重起tomcat服务器:
[root@web1 ~]# /usr/local/tomcat/bin/shutdown.sh
[root@web1 ~]# /usr/local/tomcat/bin/startup.sh
[root@web1 ~]# ss -ntulp | grep java
3.查看服务器的日志文件:
[root@web1 ~]# ls /usr/local/tomcat/logs/
a_access.2018-08-24.txt host-manager.2018-08-24.log
b_access.2018-08-24.txt localhost.2018-08-24.log
catalina.2018-08-24.log localhost_access_log.2018-08-24.txt
catalina.out manager.2018-08-24.log