VMware SSL Automation Tool – Error Generating pfx

VMware SSL Automation Tool – Error Generating pfx

December 29, 2014 0 By Eric Shanks

sslguideDuring the process of setting up a new vCenter Server in my lab, I ran into an issue adding SSL Certificates to my vCenter services.  I followed my own blog posts about how to do this so that I wouldn’t miss anything, but nevertheless ran into an error that took me quite a while to get fixed.

After creating all my certificate requests using the VMware SSL Automation Tool, I updated my SSO with my custom certificate without issue.  The next step is to make sure the Inventory Service trusts the new SSO Certificate, which also went without a hitch.

 

When I tried to update the Inventory Service SSL Certificate, I received this puzzling error message.

PFXError1

When I looked at this a little bit further, I noticed that the certificates I downloaded from my certificate authority looked to be too long, which is when I found my issue.  During the certificate request you need to download the certificate and not the certificate chain.

PFXError2

After re-requesting all of my certificates and re-running the Automation tool again, I got a successfully completed message.

PFXError3

 

Summary

This took me a few hours to troubleshoot and finally figure out where I went wrong.  Hopefully this post will save someone else from this trouble.