Certificate for vCenter Appliance 7

Hello Everyone,

I just installed vSphere 7 (ESX Server & vCenter Server Appliance). Now, I would like to get SSL certificate for vCenter. Has anybody here obtained cert for vCenter 7? Appreciate your help.

Thanks

Ram

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: ramlan.ca

I ran this command: not yet

It produced this output: not yet

My web server is (include version):

The operating system my web server runs on is (include version): VMWare Photon

My hosting provider, if applicable, is: GoDaddy

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

1 Like

Zero experience, but Google showed me this guide: https://jjasghar.github.io/blog/2017/11/14/vcenter-vcsa-and-using-lets-encrypt/

Does that look like something that would work?

Note: looks like this is a very manual process (i.e., totally not automated) and would have to be repeated every 60-90 days (Let’s Encrypt certificates are valid for 90 days only).

1 Like

Thanks Osiris - I did check the URL before posting the message. It is manual and it is bit complicated as well. I will keep looking for a solution.

1 Like

@ramg1967

Here is also some good information on your topic that might help a bit.

"Allowing SSH access to ESXi/ESX hosts with public/private key authentication"
https://kb.vmware.com/s/article/1002866

"Replacing ESXi SSL Certificates and Keys"

"Replace the Default Certificate and Key from the ESXi Shell"

"vCenter Appliance Certificate"
https://communities.vmware.com/thread/575609

Hope this helps

1 Like

Thanks Rip. I did exactly the same by following VMWare doc. It works.

After that, I deployed Trusted Root Certificate through SCCM to all workstations that need to run vCenter Appliance URL through I E and Edge.

2 Likes