This Fling is a GUI application to replace digital certificates on the vCenter Server Appliance. Easily deploy by selecting the components that need digital certificates replaced. This Fling works with vCenter Server Appliance 5.5.
The GUI wizard-based tool helps you by:
- Replacing certificates for vCenter Server, Inventory Service, Log Browzer, and Auto Deploy
- Providing Single-Sign On (SSO) that uses the same certificate as the vCenter Server certificate
- Collecting backups of previously deployed certificates and associated files
- Providing tool level logging
This fling can be downloaded from Here
System Requirements
- vCenter Server Appliance 5.5
- Windows OS with Java SE Runtime Environment 8
Instructions for Installing the fling
- Make sure
sshdservice is running on vCSA - Run this command on vCSA to get the lookup URL:
cat /etc/vmware-sso/ls_url.txt - On a Windows machine, make sure the JRE_HOME system variable is set to the Java SE Runtime Environment 8
- Do NOT place the certificate chain file, key and pfx of various component, on the same directory in file system
Previously deployed certificate files are copied with the old_rui prefix. Logs are available in the user home directory.
Steps:
- Launch the
certmgr.jar - Select the components whose certificates need to be replaced
- Provide the credentials of root user in vCSA
- Provide the credentials for vCenter Single-Sign On. In IP/Hostname field, use FQDN if lookup service url is using FQDN or vice-versa. User Name should be the system tenant (Administrator@vsphere.local) only
- Drag and drop certificate chain file, and the key and pfx from file system to their respective text fields
- Click on the Start button and wait until the Run Complete message appears
- Click on Logs to determine whether certificate replacement was success/fail