VMware Cloud Community
vickysingh9616
Contributor
Contributor

Certificate of ESXi getting Overwrite by the vCenter VMCA

Hi,

I've Installed the Third Party Certificate from Let's Encrypt into the ESXi "ns3027405.ip-149-202-199.eu" but whenever I'm adding this Same Host to vCenter, It simply overwrite my Third Party CA with their own Self Signed Certificate which is not trusted.

As Per KB, I've updated the certmgmt mode to custom,  and add it's certificate to trusted root also, Please Suggest

pastedImage_2.png

pastedImage_1.png

Reply
0 Kudos
1 Reply
msripada
Virtuoso
Virtuoso

ESXi Provisioning and VMCA

When you boot an ESXi host from installation media, the host initially has an autogenerated certificate. When the host is added to the vCenter Server system, it is provisioned with a certificate that is signed by VMCA as the root CA.

Expected behavior... Add host to vcenter and then generate the CA certs and then replace certs and restart management agents....

Certificate Management for ESXi Hosts

Thanks,

MS

Reply
0 Kudos