After a failed attempt to update Certificates on a vSphere 5.5 implementation, we rolled back.

This went find using the VMware Certification Tool.

All certificates seem to be reverted to the VMware default certificates.

vSphere Client works fine to connect to the vCenter Servers.

But the Web Client throws this error at us: "Based on the current configuration, the SSL certificate of the authentication server was not trusted"

My best guess is that this is caused by an invalid STS signing chain.

But since we cannot access the WebClient, we cannot check the STS chains.

(normally this is the procedure: http://vexpert.me/rC )

Is there any way to check this through a CLI command?

Where is this STS keystore located?

Thanks!

Regards,
Harold