Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


Code Block
C:\Program Files\Java\jdk1.7.0\bin>keytool -genkey -alias tomcat -keyalg RSA
Enter keystore password: password
Re-enter new password: password
What is your first and last name?
  [Unknown]:  Robert
What is the name of your organizational unit?
  [Unknown]:  home
What is the name of your organization?
  [Unknown]:  home
What is the name of your City or Locality?
  [Unknown]:  SF
What is the name of your State or Province?
  [Unknown]:  CA
What is the two-letter country code for this unit?
  [Unknown]:  US
Is CN=Robert, OU=home, O=home, L=SF, ST=CA, C=US correct?
  [no]:  yes

Enter key password for <tomcat>
        (RETURN if same as keystore password): password
Re-enter new password: password

C:\Program Files\Java\jdk1.7.0\bin>

2. 配置您的Tomcat

请确保您的服务正在运行请确保您的服务已停止. 打开 \apache-tomcat\conf\server.xml, 解除以下内容的注释并根据需要编辑.

Code Block
<!-- Define a SSL HTTP/1.1 Connector on port 8443
         This connector uses the JSSE configuration, when using APR, the
         connector should be using the OpenSSL style configuration
         described in the APR documentation -->

    <Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS"


Compared to the original settings, the following attributes have been added/changed比较默认设置,以下是修改过的属性.

port: 8443 to 443 (If you intend to browse to https://yourDomain instead of https://yourDomain:8443)
keystoreFile: Path to the .keystore file
keystorePass: The password defined earlier

Start your server. You may now surf to your Joget at 启动服务. 您可以通过 *https://yourDomain/jw* or  或 *https://yourDomain:8443/jw* depending on what is configured (根据您的配置决定端口号)访问Joget了.


Apache Tomcat 6.0 SSL Configuration HOW-TO