{"id":885,"date":"2012-01-30T11:00:44","date_gmt":"2012-01-30T16:00:44","guid":{"rendered":"http:\/\/enterpriseadmins.org\/blog\/?p=885"},"modified":"2012-01-28T13:55:32","modified_gmt":"2012-01-28T18:55:32","slug":"vsphere-vcenter-5-0-ssl-certificates","status":"publish","type":"post","link":"https:\/\/enterpriseadmins.org\/blog\/virtualization\/vsphere-vcenter-5-0-ssl-certificates\/","title":{"rendered":"vSphere vCenter 5.0 SSL certificates"},"content":{"rendered":"<p>It seems every release of the VMware vSphere vCenter server service has more\u00a0dependency\u00a0on SSL. \u00a0I always replace the default self signed SSL certificates with ones created from an internal\/trusted certificate authority. \u00a0There is a good four part guide to creating the properly formatted certificates available here:\u00a0<a href=\"http:\/\/www.virtualvcp.com\/vsphere-4-technical-guides\/136-replace-ssl-certificates-prepare-openssl-and-microsoft-cs\">http:\/\/www.virtualvcp.com\/vsphere-4-technical-guides\/136-replace-ssl-certificates-prepare-openssl-and-microsoft-cs<\/a><\/p>\n<p>As of last count, you need to place the custom SSL certificate in 4 places to make sure you don&#8217;t see any pesky SSL warnings.  Here is a listing of those paths and instructions required to make the certificate work:<\/p>\n<p><strong>vCenter Server Service (VPXD)<\/strong><br \/>\nSSL location: C:\\ProgramData\\VMware\\VMware VirtualCenter\\SSL<br \/>\nRun the command: &#8220;D:\\Program Files\\VMware\\Infrastructure\\VirtualCenter Server\\vpxd.exe \u2013p&#8221; to reset the vpxd password.<br \/>\n*Note: This will cause all of the hosts to become disconnected and require each to be reconnected to vCenter<\/p>\n<p><strong>vSphere Web Client Server<\/strong><br \/>\nSSL location: D:\\Program Files\\VMware\\Infrastructure\\vSphere Web Client\\DMServer\\config\\ssl<br \/>\nRestart the &#8220;vSphere Web Client&#8221; Service.<\/p>\n<p><strong>VMware vCenter Update Manager<\/strong><br \/>\nSSL location: D:\\Program Files\\VMware\\Infrastructure\\Update Manager\\SSL<br \/>\nFind\/Replace the existing server name in the D:\\Program Files (x86)\\VMware\\Infrastructure\\Update Manager\\extension.xml file and replace it with your servers alias\/SSL certificates common name.<br \/>\nRun the command: &#8220;D:\\Program Files (x86)\\VMware\\Infrastructure\\Update Manager\\vciInstallUtils.exe &#8211;vc myvcenter.mydomain.com &#8211;port 80 -U myusername -P mypassword -S extension.xml -C . -L . -O extupdate&#8221;<br \/>\n<em>Where myvcenter.mydomain.com is the common name\/friendly name of your SSL certificate and 80 is the http port of your vCenter.<\/em><\/p>\n<p><strong>vCenter Inventory Service:<\/strong><br \/>\nSSL location: D:\\Program Files\\VMware\\Infrastructure\\Inventory Service\\ssl<br \/>\nStop thevCenter Inventory Service (Note: This will also stop the dependent service VMware vSphere Profile-Driven Storage Service)<br \/>\nRun the command: D:\\Program Files\\VMware\\Infrastructure\\Inventory Service\\scripts\\register.bat myvcenter.mydomain.com 443<br \/>\n<em>Where myvcenter.mydomain.com is the common name\/friendly name of your SSL certificate and 443 is the https port of your vCenter.<\/em><br \/>\nStart the vCenter Inventory Service<br \/>\nStart the VMware vSphere Profile-Driven Storage Service<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It seems every release of the VMware vSphere vCenter server service has more\u00a0dependency\u00a0on SSL. \u00a0I always replace the default self signed SSL certificates with ones created from an internal\/trusted certificate authority. \u00a0There is a good four part guide to creating &hellip; <a href=\"https:\/\/enterpriseadmins.org\/blog\/virtualization\/vsphere-vcenter-5-0-ssl-certificates\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[4],"tags":[],"class_list":["post-885","post","type-post","status-publish","format-standard","hentry","category-virtualization"],"_links":{"self":[{"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/posts\/885","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/comments?post=885"}],"version-history":[{"count":8,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/posts\/885\/revisions"}],"predecessor-version":[{"id":893,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/posts\/885\/revisions\/893"}],"wp:attachment":[{"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/media?parent=885"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/categories?post=885"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/enterpriseadmins.org\/blog\/wp-json\/wp\/v2\/tags?post=885"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}