RVANOC
Contributor
Contributor

(51192) SSL Certificate Cannot Be Trusted

I just got a Nessus violation on a ESXi host. The ironic thing is I only got it on one host and in vCenter I already did renew Certificate.  It did not appear to resolve it.   I looked at the Certificate on the box in vCenter and it looks fine.

5ESX.PNG

Tags (1)
0 Kudos
3 Replies
daphnissov
Immortal
Immortal

What is the certificate being presented by the host itself?

0 Kudos
RVANOC
Contributor
Contributor

certifcate1_LI (2).jpgcertifcate2.PNGcertifcate3.PNG

0 Kudos
Ajay1988
VMware Employee
VMware Employee

That's a VMCA signed ceritificate and not a CA certificate which is why it shows not trusted. Why should that be trusted ? Replace with your Microsoft CA or any other CA to get it trusted .

Make sure to have the vpxd.certmgmt.mode to custom when using custom certs .

If you think your queries have been answered
Mark this response as "Correct" or "Helpful".

Regards,
AJ
0 Kudos