Search the VMware Knowledge Base (KB)
View by Article ID

How to replace the vSphere 6.0 Solution User certs with VMCA issued certs (2112281)

  • 2 Ratings
Language Editions

Purpose

This article explains how to regenerate new vSphere 6.0 Solution User certificates from the VMware Certificate Authority (VMCA).

The certificates generated is issued from the current VMCA Root Certificate. You may want to configure VMCA as a Subordinate Certificate Authority of an existing Certificate Authority. For more information on this procedure, see Configuring vSphere 6.0 VMware Certificate Authority as a subordinate Certificate Authority (2112016).

Notes:
  • The vSphere 6.0 Solution Users use SSL Certificates for internal communication and endpoint registration.
  • If you are using vCenter Server 6.0 with an embedded Platform Services Controller, there are four Solution User Certificates:

    • machine
    • vpxd
    • vpxd-extension
    • vsphere-webclient
  • If you have a vCenter Server with an external Platform Services Controller, each vCenter Server 6.0 will have four the preceding Solution User Certificates and each external Platform Services Controller will have one Solution User for the machine name.

Resolution

Note: For vCenter Server 6.0 Update 1b and later, unique names must be created.  For more information, see Updating certificates using certificate manager on vCenter Server or PSC 6.0 Update 1b fails (2144086).

To replace the vSphere 6.0 Solution User certificates with VMware Certificate Authority issued certificates:
  1. Launch the vSphere 6.0 Certificate Manager.

    For vCenter Server 6.0 Appliance:

    /usr/lib/vmware-vmca/bin/certificate-manager

    For Windows vCenter Server 6.0:

    C:\Program Files\VMware\vCenter Server\vmcad\certificate-manager

  2.  Select Option 6 (Replace Solution user certificates with VMCA Certificates)

  3. Type Yes (Y) to the confirmation request to proceed.
  4. Provide the administrator@vsphere.local password when prompted.

    Notes:

Tags

Replacing the vSphere 6.0 solution user certs, VMCA certs

See Also

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 2 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.

What can we do to improve this information? (4000 or fewer characters)




Please enter the Captcha code before clicking Submit.
  • 2 Ratings
Actions
KB: