Add SSL Certificate to VMware vCOps

piotr_halas_padlockIn this day and age, almost all the programs we interact with are web pages.  Many of the applications we deploy end up having a web front end and are configured with a default SSL Certificate.  It’s much more secure to have your own trusted certificate and in previous posts I’ve gone over how to setup the Public Key Infrastructure (PKI) in a home lab, as well as deploying Web Certificate Templates for our applications.

Deploying vCOps in your VMware infrastructure is a very common thing to be done for almost all deployments.  Let’s be sure to install a trusted certificate when we do the deployment.

 

Create the Certificate Request

In a previous post I went over creating certificate requests for other VMware services and this will be much like those services.  We can run the SSL Automation tool from VMware again, and this time select the “Other service” category.  Fill out the requested information.

vcops-ssl1

 

This will create a certificate request and create a request file.  If you want more information please see this post about creating the certificate requests.

Once you’ve sent the certificate request to the Certificate Authority, you’ll receive a certificate file.  Again, if you want more information about this, please see my post on Creating and downloading Certificate Request files for VMware.

 

Building the Certificate

Now that you’ve gotten the certificates from the certificate authority, we can build the final file that needs to be uploaded to vCOps.   In the past, we’ve had to add the Root64.crt file to the rui.crt file.  Please go ahead and do this again, just as we did previously.vcops-ssl8

Once you’re done with that, we need to also add the rui.key file to the end of the chain.pem file.  vCOps will require you to have the private key in the SSL certificate.

Go back to the vCOps URL with the /admin url.  https://vCOps/Admin.  Upload and install the new file that you’ve created.

vcops-ssl9

Once done, you should be able to reload your browser session and you’ll see that the https:// session is now trusted.

vcops-ssl10

 

Troubleshooting

If the web browser isn’t showing a trusted certificate, look for the following:

  • Is the root CA trusted on your machine
  • Reboot the vCOps appliance
  • Clear your browser cache

 

Leave a reply