Godday wildcard cert not work on Horizon 6

cyphil · ‎11-29-2015

Hi,

Self-signed cert works on View connection server, but my wild card public cert does not.

I have searched the forum of resolution, but still can't figure out.

Steps I have done:

1. Generate CSR on my domain controller dc.mycompany.com, CN=*.mycompany.com, allow export private key.

2. Post CSR to Godaddy and download the cert (IIS format).

3. In my domain controller dc.mycompany.com, import the cert from Goddy

4. Export the cert of "*.mycompany.com" with private key to .pfx

5. Import to connection server viewconn.mycompany.com

6. Set friendly name "vdm" and restart connection server

On IE

==========

This page can't be displayed

Make sure the web address https://viewconn.mycompany.com is correct.
Look for the page with your search engine.
Refresh the page in a few minutes.
Make sure TLS and SSL protocols are enabled. Go to Tools > Internet Options > Advanced > Settings > Security

==========

On Chrome

==========

Error: ERR_SSL_VERSION_OR_CIPHER_MISMATCH

==========

Thanks a lot, quite urgent.

JavierBernal · ‎11-30-2015

Hi,

Make sure that your wildcard certificate is the only one with "vdm" as a friendly name. Change or remove the friendly name on the self-signed certificates.

Cheers,

Javier

cyphil · ‎11-30-2015

Thansk Javier. Yes I did. When I change back to self-signed cert is the only "vdm", I can connect immediately although there untrusted cert warning as always.

NeilBarnes · ‎11-30-2015

Follow the below. Create the CSR from the view connection server rather than somewhere else.

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=206866...

Good Luck - Certs are horrible horrible things.

amr12 · ‎11-30-2015

Unfortunately following that KB to the exact wording is the way to go. I struggled with this so much and had to get support involved and walk me through it. I documented the whole process.

All

Godday wildcard cert not work on Horizon 6