Five Minutes to Get HTTPS Configuration, Brother

Web Technologies
1

Five Minutes to Get HTTPS Configuration, Brother

FreeSSL.cn: A Free HTTPS Certificate Application and Management Website

In this article, we will explore the process of obtaining a free HTTPS certificate using FreeSSL.cn, a website designed to promote the popularization and application of HTTPS certificates. We will cover the steps involved in applying for a certificate, configuring a Java KeyStore (JKS) format certificate for Tomcat, and finally, testing the HTTPS configuration.

01. On FreeSSL.cn

FreeSSL.cn is a free HTTPS certificate application and management website that simplifies the process of certificate applications. Although the service is not entirely free, it is very user-friendly, making it accessible to even those with limited technical knowledge.

02. Apply for a Certificate Using FreeSSL

To apply for a certificate using FreeSSL, follow these steps:

  1. Fill in the domain name and click on “Create a free SSL certificate.”
  2. Fill in the mailbox and click “create.”
  3. Select the generated offline option and use KeyManager to generate a Certificate Signing Request (CSR).
  4. Back to the browser and click “Next.”
  5. Download the file and upload it to the server specified directory.
  6. Click on “Verification” and then click on “Save to KeyManager.”

03. The Configuration JKS Format Certificate for Tomcat

To configure a JKS format certificate for Tomcat, follow these steps:

  1. Export certificates in Java keystone (JKS) format.
  2. Upload the certificate to the server.
  3. Configure the server.xml file in Tomcat to use the JKS format certificate.

The Configuration File

The configuration file for Tomcat is as follows:

<Connector port="81" protocol="HTTP/1.1" maxThreads="250" maxHttpHeaderSize="8192" acceptCount="100" connectionTimeout="60000" keepAliveTimeout="200000" redirectPort="8443" useBodyEncodingForURI="true" URIEncoding="UTF-8" compression="on" compressionMinSize="2048" noCompressionUserAgents="gozilla, traviata" compressableMimeType="text/html, text/xml, application/xml, application/json, text/javascript, application/javascript, text/css, text/plain, text/json, image/png, image/gif" />
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol" port="443" maxThreads="200" scheme="https" secure="true" SSLEnabled="true" keystoreFile="/home/backup/qingmiaokeji.cn.jks" keystorePass="Chenmo" clientAuth="false" sslProtocol="TLS" useBodyEncodingForURI="true" URIEncoding="UTF-8" compression="on" compressionMinSize="2048" noCompressionUserAgents="gozilla, traviata" compressableMimeType="text/html, text/xml, application/xml, application/json, text/javascript, application/javascript, text/css, text/plain, text/json, image/png, image/gif" />

04. Finally

Have you ever booked a five-minute hourglass? If more than five minutes HTTPS has not successfully configured, you can hit me!

Share This Article

Share this article from the public micro-channel number - silent king (cmower).