Hello!
I need to change my SSL certificate on ESXi server, I managed to generate certificate request via ESXi web client, but I can't understand what certificate authority should I use to generate certificate itself.
ESXi hoster refused my support ticked: "Your request is out of the assistance perimeter, I invite you to check on the esxi forums or tutorials esxi."
Could you please assist me?
Thanks
Hi @nick_nem ,
What is the version of ESXi host? Support might have refused if your ESXi version is end of support life.
If you are trying to assign a certificate from certificate authority, you need to provide the certificate request files to your CA to get the certificates.
If you are trying to regenerate default VMware certificates, please refer these documents:
For 5.5 --> Generate New Self-Signed Certificates for ESXi
For 6.0 --> Renew or Refresh ESXi Certificates
Hope that helps
Please mark my comment as the Correct Answer/Kudos if this solution resolved your problem
Hello, @ashilkrishnan , thank you for your answer!
ESXi server version is 6.5
I am trying to assign a certificate from authority. I generated the certificate request via web client:
and got request file data. The problem is that I have no idea which authority I should contact, it is not mentioned anywhere. How can I get authority contacts?
Do you have a CA in your environment or you want to renew a self-signed cert on your esxi with a self-signed cert.
a picture of the expired or expiring cert would be helpful
The issuer of my currect cert is VMware installer:
What is the reasoning for replacing the cert?
Do you have an internal CA that can issue a certificate for the request you created?
The reason is that my browser does not accept this certificate due to invalid domain and I want to re-create it. I guess it was issued automatically by my hoster.
I do not have an internal CA.
if you don't have an internal CA, you would have to use the esxi CA to generate a new cert.
you would also have to add the esxi CA to your trusted root CA on the computer you are accessing the esxi from
Do you have a vCenter or it's a small deployment with a single host ?
This write up has all info you need to generate a new cert.
No, I don't have vCenter. Thak you for the link, I appreciate your help!