I've followed the instructions in KB2108294, un unfortunately I am not seeing the ' Download trusted root CA certificates' link. See the screenshot
The PowerCli version is VMware PowerCLI 11.2.0 build 12483598. Any idea?
You have 4 options..
1. Suppress the warning about a certificate being invalid because its self signed (Generated)
2. Import these certificates to the local certificate as trusted certs.. (this will suppress the invalid cert warnings in the browser for vCenter )
3. Get a proper certificate generated by a Certificate authority (such as Comodo) for this you will need to generate a Certificate Signing Request and send of to your certificate authority. Get back a Certificate and install on servers. You may want to add a subject alternative name to the CSR for the short name of the server as well as its FQDN for the CSR.
Remember that proper signed certs will also require proper management and updating at a later date and can produce their own headaches in that management.
4. Stay as you are and ignore the warning.
I personally do the following.
Set the following as my PowerCLI configuration.
Set-PowerCLIConfiguration -DefaultVIServerMode Multiple -InvalidCertificateAction Ignore -ParticipateInCeip $false -DisplayDeprecationWarnings $true -WebOperationTimeoutSeconds -1 -Scope AllUsers
and for vcenter Certs Import the root CA Certs from https://<vCenter Server>/certs/download.zip
For ESXi host Certs open the host ui in a web browser and right click the cert Icon and choose to Certificate information
from there you can save to file and have options to export the full certificate chain during that export and then import them P7B Trusted Certs on the local machine
