将下载的证书pfx文件转为jks格式:进入jdk安装目录下的bin文件夹,将证书文件复制到该目录下,使用命令:keytool -importkeystore -srckeystore xxx(文件名).pfx -destkeystore xxx(转换后的文件名).jks -srcstoretype PKCS12 -deststoretype JKS,输入三次证书密码,转换后jks文件同在bin目录下。
配置tomcat的server.xml,需8.5版本以上
<Connector port=“443” protocol=“org.apache.coyote.http11.Http11Nio2Protocol” defaultSSLHostConfigName=“www.domain1.com”
maxThreads="150" SSLEnabled="true" >
<SSLHostConfig hostName="domain1">
<Certificate certificateKeystoreFile="证书所在路径(我是用绝对路径)" certificateKeystorePassword="证书密码" type="RSA" />
</SSLHostConfig>
<SSLHostConfig hostName="domain2">
<Certificate certificateKeystoreFile="证书所在路径(我是用绝对路径)" certificateKeystorePassword="证书密码" type="RSA" />
</SSLHostConfig>
<Host name=“www.domain1.com” appBase=“webapps”
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain1.war"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
<Host name=“www.domain2.com” appBase=“webapps”
unpackWARs="true" autoDeploy="true">
<Context path="" docBase ="domain2.war"/>
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
</Host>
重启tomcat即可。