I'm stuck in some kind of certificate netherworld. I've run certificate manager to create a new key and csr per these instructions, choosing options 1 and 1.
https://samsig.dk/getting-a-valid-certificate-on-your-vmware-vsphere-vcenter-6-7/
When I use our certificate portal and pasted my csr into the certificate csr field, I got a message that the alternative email is invalid. The portal itself has a required email field, so I decided to go back through the cert setup and leave the email blank. The setup wants to use the existing certool.cfg or quit. I ran through it and tried to overwrite the email entry with a blank, but that didn't work. I tried to use the certool command to overwrite the email entry with a blank, but I get an error when I try to do that. I renamed the certool.cfg file in the config folder to .old, but the certificate manager still sees all of the previous info that I entered, including the email entry I want to ditch.
Is there another certool.cfg file that I need to look for somewhere? Should I delete the one that I renamed? Any other options?
Thanks.