VMware Cloud Community
sajalbhuinya
Contributor
Contributor
‎03-04-2021 06:14 AM

vSphere Overwriting Esxi SSL

Hi,

Vcenter is Overwriting the esxi valid SSL certificate i can find the option for old version vcenter option - vpxd.certmgmt.mode 

but what is the new vSphere setting for custom SSL please anyone help me 

 

Thanks

Reply
0 Kudos
2 Replies
sajalbhuinya
Contributor
Contributor
‎03-08-2021 07:38 AM

if anyone know please help me on this .

Reply
0 Kudos
jburen
Expert
Expert
‎03-12-2021 01:02 AM

Have a look at this https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-32AD28E1-53C3-48E...

I think you want to use the Custom Certificate Authority mode for your ESXi host certificates.

  1. Obtain the certificates that you want to use.
  2. Place the host or hosts into maintenance mode and disconnect them from vCenter Server.
  3. Add the custom CA's root certificate to VECS.
  4. Deploy the custom CA certificates to each host and restart services on that host.
  5. Switch to Custom CA mode. See Change the Certificate Mode.
  6. Connect the host or hosts to the vCenter Server system.

Change the certificate Mode:

  1. In the vSphere Client, select the vCenter Server system that manages the hosts.
  2. Click Configure, and under Settings, click Advanced Settings.
  3. Click Edit Settings.
  4. Click the Filter icon in the Name column, and in the Filter box, enter vpxd.certmgmt to display only certificate management parameters.
  5. Change the value of vpxd.certmgmt.mode to custom if you intend to manage your own certificates, and to thumbprint if you temporarily want to use thumbprint mode, and click Save.
  6. Restart the vCenter Server service.
Consider giving Kudos if you think my response helped you in any way.
Reply
0 Kudos