Hello
I have followed the steps to replace the Identity appliance with a CA signed certificate (latest version 2.2.1.0)
Everything went fine and I included the private key and full certificate chain which the Identity appliance expected.
however when i close down all browsers and navigate to identity appliance its still showing the default signed certificate (despite the SSL tab showing otherwise!)
I have rebooted the appliance and replaced the certificate with a new one but this has made no difference. Am I missing something?
See GrantOrchardVMware's answer here vRA: Certificate doesn't seem to extend to port 5480.
Essentially 5480 runs using a different web server which the certificate is not installed to when you update it. There is a way to update the certificate for the 5480 site that can be found here vCloud Automation Center Documentation Center
are you getting the default certificate connecting to port 5480 or port 7444?
5480
Are you about to tell me this is by design?
I just connected to 7444 and feel a little stupid. any idea why this is the behaviour?
See GrantOrchardVMware's answer here vRA: Certificate doesn't seem to extend to port 5480.
Essentially 5480 runs using a different web server which the certificate is not installed to when you update it. There is a way to update the certificate for the 5480 site that can be found here vCloud Automation Center Documentation Center
thanks both. I was pulling me hair out for about 90 minutes on this one!
5480 runs on lighttpd
you can change the certificate for this. Its called server.pem and runs at
/opt/vmware/etc/lighttpd
/opt/vmware/etc/lighttpd/server.pem
You need to rename this or delete. Bring up your new cert name it server.pem and restart vami-lighttp service.