Replacing VirtualCenter certificates

stratolynne · ‎03-08-2010

Hi all,

We upgraded from VI3.5 to vSphere and want to replace the SSL certificates with the organization private ones that we used with VI3.5. In my notes from when I did this for VI3.5 I have to power off all the VMs. There is also a step in the Replacing vCenter Server Certificates:

"To load the certificates into memory

1. Connect to the vCenter Server system from vSphere Client and power off or migrate all virtual machines running on any hosts that vCenter Server manages."

Hence, my question -- do I really have to power off all the VMs that the vCenter manages manages? Or is a disconnect and reconnect sufficient to get the SSL certificates replaced on the vCenter Server itself?

Thanks.

geddam · ‎03-08-2010

You dont have to....

This is what I do for replacing certificates.

1. Disable HA and set DRS to manual.

2. Right click host, select disconnect and then remove . (this will not cause any downtime).

3. Replace certificates for vCenter.

4. Readd hosts back to vCenter and enable HA and DRS to automatic,

Thanks,,

Ramesh. Geddam,

VCP 3&4, MCTS(Hyper-V).

Please award points, if helpful

Thanks,, Ramesh. Geddam,

All

Replacing VirtualCenter certificates