Critical alert vSphere vCenter Host Certificate Ma...

tamiraig · ‎03-25-2021

Hi

Im getting this error message on my vcenter 6.7 main dashboard.

vSphere vCenter Host Certificate Management Mode

couldnt find any useful data on this.

appreciate your thoughts

T

msripada · ‎03-25-2021

Can you check the settings of cert mode on VCSA and let us know if any change recently

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-122A4236-9696-4E1...

Ensure all the certs are validate if set to custom. If VMCA, check if the certs are good and not going to expire. If thumbprint, change to VMCA or custom depending on your environment

thanks,

Murali

tamiraig · ‎03-25-2021

Hi

I never changed any of these settings to custom as far as I know

T

msripada · ‎03-25-2021

It is set to thumbprint and not sure why. It is a default setting of VMCA. Thumbprint is not a recommended one. Please review and change accordingly as described in the docs.

thanks,

Murali

tamiraig · ‎03-25-2021

in my other vc its also set to thumbprint and I dont have any alert.

not sure what is the correct setting

T

msripada · ‎03-26-2021

The default setting is VMCA. I believe you have not reviewed the docs which I shared earlier

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-122A4236-9696-4E1...

Change the value of vpxd.certmgmt.mode to custom if you intend to manage your own certificates, and to thumbprint if you temporarily want to use thumbprint mode, and click Save.

thanks,

Murali

All

Critical alert vSphere vCenter Host Certificate Management Mode

vCenter 6.7