• Company
    Company
    • About
      About
    • Data Centres
      Data Centres
  • Services
    Services
    • Cloud Hosting
      Cloud Hosting
    • Veeam Cloud Connect
      Veeam Cloud Connect
      • Cloud Connect Backup
        Cloud Connect Backup
      • Cloud Connect Replication
        Cloud Connect Replication
    • Datacentre Engineering
      Datacentre Engineering
    • Data Transport
      Data Transport
  • Brands
    Brands
    • DataSquirrel
      DataSquirrel
    • MonkeyByte
      MonkeyByte
  • Support
    Support
    • Cloud Portal
      Cloud Portal
    • Backup Portal
      Backup Portal
  • Contact
    Contact
  • Blog
    Blog
logo
logo
logo

VCSA 6/6.5 Replace Machine SSL with 3rd party CA SSL certificate

No comments

VCSA 6/6.5 Replace Machine SSL with 3rd party CA SSL certificate

SSH (1st Window)
“shell”
“mkdir /root/ssl”
“/usr/lib/vmware-vmca/bin/certificate-manager”
Option 1
** Note name should be the same as hostname (FQDN)

SSH (2nd Window)
shell
“cd /root/ssl”
“mv vmca_issued_key.key machine_ssl.key”
“vi vmca_issued_csr.csr”
Copy CSR to your 3rd party CA and request SSL
=== Banana & Tea Break whilst you wait issue, mileage may vary ===
Download SSL cert bundle
Copy “issuedssl.cer” contents
“vi /root/ssl/machine_ssl.cer” and paste
:wq!
Copy contents of root certs or bundle:
“vi /root/ssl/root-64.cer” and paste
** If you have multiple “CA” certs, these all need to go in “root-64.cer” one after the other. Some CA’s will bundle these three together for you on download as one file such as “gd_bundle-g2-g1”
:wq!

Back to 1st Window
Option 1. Continue to importing Custom certificate(s) and key(s) for Machine SSL certificate

Supply file paths:
/root/ssl/machine_ssl.cer
/root/ssl/machine_ssl.key
/root/ssl/root-64.cer

Choose Yes to apply the new SSL cert, this can take a few minutes to update the services and restart things.. still got some tea left?

And all going well, test your URL and the new cert should be active! Pat on back etc.. It’s not always easy being green, but sometimes it is.

Recent Posts
  • RDS: Changing the Connection Broker DNS Alias
  • Server 2012R2/2016 List WWNs
  • Deploy RDS Web Client
  • GDPR Compliance
  • ESXi vmhba32 Error
Recent Comments
  • monkeyadmin on Lets Encrypt on Turnkey Linux LAMP
  • Hamza on Lets Encrypt on Turnkey Linux LAMP
  • Aaron on Installing VMRC “Failed to install hcmon driver” on Win 10
Archives
  • October 2018
  • August 2018
  • July 2018
  • May 2018
  • March 2018
  • February 2018
  • November 2017
  • October 2017
  • September 2017
  • May 2017
  • April 2017
  • March 2017
  • February 2017
  • July 2016
  • June 2016
  • May 2016
  • April 2016
  • March 2016
Categories
  • Cloud Hosting
  • Infinite Monkey's Ramblings
  • ManageIQ
  • Storage
  • Ubuntu
  • Uncategorised
  • Uncategorized
  • Veeam
  • VMware
  • websites
  • Zerto
Meta
  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Leave a Comment

Your feedback is valuable for us. Your email will not be published.
Cancel Reply

Please wait...
Submit Comment →

Contact
Tel: 020 8242 4277
hello@cloudmonkey.co.uk
London
We Work
41 Corsham Street
Shoreditch
N1 6DR
Midlands
87a Warwick Street
Leamington Spa
Warwickshire
CV32 4RJ

Registered in England & Wales
Company number: 09272142
VAT number: 213533738
DUNS: 220434791

© Cloud Monkey™ Ltd 2019 | Privacy Policy | Terms of Service | Cookie Policy | No Monkeys were harmed in the making of this site.
VCSA 6/6.5 Replace Machine SSL with 3rd party CA SSL certificate | Cloud Monkey