Tomcat:端口 8443 上的 SSL https 连接出现问题
我们在 Tomcat 7 上运行的应用程序上的 https(端口 8443)连接遇到问题.该应用程序现在在 http(端口 80)上运行良好.我在 server.xml 文件中取消了定义 SSL ..."部分的注释并设置了所有属性值(见下文).但是,当我尝试通过浏览器运行该应用程序时,出现错误远程设备或资源不接受连接".
We are having trouble with the https (port 8443) connection on an app that runs on Tomcat 7. The app is running fine on http (port 80) now. I have uncommented the "Define a SSL ..." section in the server.xml file and set all the property values (see below). However, when I try to run the app through a browser, I get the error, "The remote device or resource won't accept the connection."
此外,当我在服务器上运行端口实用程序以查看哪些端口处于打开和侦听状态时,它会显示 Tomcat 的端口 80,端口 443 也在侦听.Java 1.6 版,Tomcat 7 版.
Also, when I run a port utility on the server to see what ports are open and listening, it displays port 80 for Tomcat, and port 443 is also listening. Java version 1.6, Tomcat 7 versions.
任何想法都将不胜感激,因为我几周来一直在思考这个问题.
Any ideas would be greatly appreciated as I've been banging my head on this one for weeks.
<connector port="443" maxhttpheadersize="8192" maxthreads="150" minsparethreads="25"
maxsparethreads="75" enablelookups="false" disableuploadtimeout="true" acceptcount="100"
scheme="https" secure="true" sslprotocol="TLS" clientauth="false"
keystorefile="K:/tomcat1.keystore" keystorepass="password"
我用来生成密钥库文件的命令
command i used to generate keystore file
keytool -genkey -alias tomcat -keyalg RSA -keystore K:/tomcat1.keystore
密码:密码
我可以在 cmd 提示中看到 - OpenSSL 在启动 tomcat 服务器时成功启动.
I could see in cmd prompt- OpenSSL succeessfully initiated while starting tomcat server.
帮帮我
终于开始工作了... 安装了服务器的新副本,修改了 server.xml 如下,
Atlast it started working... Installed new copy of server, modified server.xml as below,
<Connector connectionTimeout="20000" port="8080" protocol="HTTP/1.1"
redirectPort="8443"/>
<!-- A "Connector" using the shared thread pool-->
<!--
<Connector executor="tomcatThreadPool"
port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" />
-->
<!-- Define a SSL HTTP/1.1 Connector on port 8443
This connector uses the JSSE configuration, when using APR, the
connector should be using the OpenSSL style configuration
described in the APR documentation -->
<Connector SSLEnabled="true" acceptCount="100" clientAuth="false"
disableUploadTimeout="true" enableLookups="false"
keystoreFile="k:/tomcat.keystore" keystorePass="*****"
maxThreads="25" port="8443"
protocol="org.apache.coyote.http11.Http11NioProtocol"
scheme="https" secure="true" sslProtocol="TLS"/>
<!-- Define an AJP 1.3 Connector on port 8009 -->
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443"/>
使用下面的命令生成密钥库文件
Used below command to generate keystore file
keytool -genkey -alias tomcat -keyalg RSA -keystore k:/tomcat.keystore