Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

Managing SSL Certificates in VMware View 5.1 using an internal Microsoft Certificate Authority (2020913)

Purpose

This article provides a method to manage SSL Certificates using a Microsoft Internal Certificate Authority within Active Directory.

Resolution

Prerequisites

  • Windows Domain Controller with these roles installed:
    • Internet Information Services (IIS)
    • Certification Authority
    • Certification Authority Web Enrollment
  • A certificate template for enrolling certificates

Opening the Certificates Management Console

  1. In the Connection Server, click Start, type mmc, and click OK.
  2. Click File > Add/Remove Snap-in.
  3. Select Certificates and click Add.
  4. Select Computer account and click Next.
  5. Select Local computer and click Finish > OK.

Requesting a new certificate

  1. Expand Certificates and click Personal.
  2. Under Object Type, right-click and select All Tasks > Request New Certificate.
  3. Read the information on certificate enrollment and click Next.
  4. Click Active Directory Enrollment Policy > Next.
  5. Select the template for certificate enrollment and click Details > Properties.

    Note: Ensure you choose the Windows Server 2003 certificate template option. Do NOT choose Windows Server 2008.

    For information on creating a certificate template, see the Microsoft Technet article Creating Certificate Templates.

    Note: The preceding link was correct as of October 31st, 2012. If you find the link is broken, provide feedback and a VMware employee will update the link.

  6. Click the General tab.
  7. Under Friendly name, type vdm.
  8. Click the Private Key tab.
  9. Click the arrow next to Key options and select the Make private key exportable option.
  10. Click OK > Enroll.
  11. Click Finish.
  12. Restart the Connection Server service.

    Notes:
    • If you use any browser other than Internet Explorer to access the View Administration console, you must add an exception for the connection to be trusted.
    • It may take a few minutes for the certificate to be recognized as valid in the View Administration console.

Update History

08/02/2012 - Added link to the Microsoft article on how to create a certificate template

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 15 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
  • 15 Ratings
Actions
KB: