VROPS8 – Creating and installing Self Sign Certification with VRLCM8

By default, vRealize Operations Manager includes its own authentication certificates. The default certificates cause the browser to display a warning when you connect to the vRealize Operations Manager user interface.
Your site security policies might require that you use another certificate, or you might want to avoid the warnings caused by the default certificates. In either case, vRealize Operations Manager supports the use of your own custom certificate. You can upload your custom certificate during initial master node configuration or later.

In all the default installations of vRealize Operations Manager nodes a default self-signed VMware certificate is included. You can implement your own SSL certificate from an internal Certificate Authority or external Certificate Authority

Generate Certificate Within Locker

You can manage Certificates with LCM Locker . Here user can,

  • Generate new certificate.
  • Import an existing certificate.
  • Generate a CSR (Certificate Sign Request).

Name – SSL/TLS certificate is must be associated with one or more host names. Selecting the correct names is very important, because the certificate will be valid only if the request matches the host name (or host names) associated with the SSL certificate.

Common Name (AKA CN) represents the server name protected by the SSL certificate. The certificate is valid only if the request hostname matches the certificate common name. Most web browsers display a warning message when connecting to an address that does not match the common name in the certificate.

How to Determine Your CSR Common Name Format

Organization Name (O): The legal name of your company/organization (i.e. Google, Inc.). Do not abbreviate your company name and it should include the corporate identifier such as Inc., Corp, or LLC (if applicable). For DV orders, you can use your personal name (i.e. John Doe).

VROPS Certification for VROPS Cluster with Single node.

VROPS8 Certification Replacement

Choose the VROPS Cluster and then the option for Replace Certificate.

A pop-up will appear for replacing the product certificate

The Current Certificate page provides the certificate details that is currently applied in the product – please press next.

Select the new certificate from the drop down that needs to be applied in the Product

Click the RUN PRECHECK button to run the precheck for the certificate against the selected product. The precheck will be mostly the hostname verification between the entries in the certificate and the product components.

  • Click FINISH button to submit the request.
  • The progress of the request can be monitored in the request page.

Leave a Reply

Your email address will not be published. Required fields are marked *