java keytool °²È«Ö¤Êéѧϰ

keytoolÉú³ÉÖ¤Êé
ÑéÖ¤ÊÇ·ñÒÑ´´½¨¹ýͬÃûµÄÖ¤Êé
keytool -list -v -alias tomcat -keystore "%JAVA_HOME%/JRE/LIB/SECURITY/CACERTS" -storepass changeit
ɾ³ýÒÑ´´½¨µÄÖ¤Êé
keytool -delete -alias tomcat -keystore "%JAVA_HOME%/JRE/LIB/SECURITY/CACERTS" -storepass changeit
´´½¨Ö¤Êé
1.·þÎñÆ÷ÖÐÉú³ÉÖ¤Ê飺(×¢£ºÉú³ÉÖ¤Êéʱ£¬CNÒªºÍ·þÎñÆ÷µÄÓòÃûÏàͬ£¬Èç¹ûÔÚ±¾µØ²âÊÔ£¬ÔòʹÓÃlocalhost)
keytool -genkey -alias tomcat -keyalg RSA -keystore d:\mykeystore
-dname "CN=localhost, OU=localhost, O=localhost, L=SH, ST=SH, C=CN"
-keypass changeit -
storepass changeit
2.µ¼³öÖ¤Ê飬ÓÉ¿Í»§¶Ë°²×°£º
keytool -export -alias tomcat -keystore d:\mykeystore -file d:\mycerts.cer -storepass changeit
3.¿Í»§¶ËÅäÖãºÎª¿Í»§¶ËµÄJVMµ¼ÈëÃÜÔ¿(½«·þÎñÆ÷Ï·¢µÄÖ¤Êéµ¼Èëµ½JVMÖÐ)
keytool -import -trustcacerts -alias tomcat -keystore
"%JAVA_HOME%/JRE/LIB/SECURITY/CACERTS" -file d:\mycerts.cer -storepass
changeit
³£³öÏÖµÄÒì³££º“δÕÒµ½¿ÉÐÅÈεÄÖ¤Êé”--Ö÷ÒªÔ­ÒòΪÔÚ¿Í»§¶Ë佫·þÎñÆ÷Ï·¢µÄÖ¤Êéµ¼Èëµ½JVMÖУ¬¿ÉÒÔÓÃ
keytool -list -alias tomcat -keystore "%JAVA_HOME%/JRE/LIB/SECURITY/CACERTS" -storepass changeit
À´²é¿´Ö¤ÊéÊÇ·ñÕæµÄµ¼Èëµ½JVMÖС£
KeytoolÊÇÒ»¸öJavaÊý¾ÝÖ¤ÊéµÄ¹ÜÀí¹¤¾ß¡£
keystore
Keytool½«ÃÜÔ¿£¨key£©ºÍÖ¤Ê飨certificates£©´æÔÚÒ»¸ö³ÆΪkeystoreµÄÎļþÖÐ
ÔÚkeystoreÀ°üº¬Á½ÖÖÊý¾Ý£º
ÃÜԿʵÌ壨Key entity£©——ÃÜÔ¿£¨secret key£©ÓÖ»òÕßÊÇ˽ԿºÍÅä¶Ô¹«Ô¿£¨²ÉÓ÷ǶԳƼÓÃÜ£©
¿ÉÐÅÈεÄÖ¤ÊéʵÌ壨trusted certificate entries£©——Ö»°üº¬¹«Ô¿
Alias£¨±ðÃû£©

ÿ¸ökeystore¶¼¹ØÁªÕâÒ»¸ö¶ÀÒ»ÎÞ¶þµÄalias£¬Õâ¸öaliasͨ³£²»Çø·Ö´óСд
keystoreµÄ´æ´¢Î»ÖÃ

ÔÚûÓÐÖƶ¨Éú³ÉλÖõÄÇé¿öÏ£¬keystore»á´æÔÚÓëÓû§µÄϵͳĬÈÏĿ¼£¬
È磺¶ÔÓÚwindow xpϵͳ£¬»áÉú³ÉÔÚϵͳµÄC:\Documents and Settings\UserName\
ÎļþÃûΪ“.keystore”
keystoreµÄÉú³É
ÒýÓÃ
keytool -genkey -alias tomcat -keyalg RSA
  
-keystore d:\mykeystore -dname "CN=localhost, OU=localhost,
O=localhost, L=SH, ST=SH, C=CN" -keypass changeit -storepass -validity
180