首先是导入证书(网上有相关的介绍,这个不是本文的重点),然后是在tomcat的目录conf下的server.xml配置如下:
<Connector protocol="org.apache.coyote.http11.Http11Protocol"
port="8443" minSpareThreads="5" maxSpareThreads="75"
enableLookups="true" disableUploadTimeout="true"
acceptCount="100" maxThreads="200"
scheme="https" secure="true" SSLEnabled="true"
keystoreFile="xx.keystore" keystorePass="changeit"
truststoreFile="xx/cacerts"
clientAuth="false" sslProtocol="TLS"/>
启动tomcat,日志正常输出,没有报错,同时应用也是正常启动,但是访问是报错如下:
出错之后,排查证书是否导入正确以及应用的web.xml配置的cas地址是否正确,经过检查都是正确,经过百度及高手指点,终于解决了,修改了server.xml,修改如下:
<Connector protocol="org.apache.coyote.http11.Http11Protocol"
port="8443" minSpareThreads="5" maxSpareThreads="75"
enableLookups="true" disableUploadTimeout="true"
acceptCount="100" maxThreads="200"
scheme="https" secure="true" SSLEnabled="true"
keystoreFile="xx.keystore" keystorePass="changeit"
truststoreFile="xx/cacerts"
clientAuth="false" sslProtocol="TLS" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,
TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA"/>
红色部分是出自https://blog.csdn.net/u013332124/article/details/79480665
具体原因不足在此仅作为记录,希望对你有帮助。