Search the VMware Knowledge Base (KB)
View by Article ID

vRealize Operations Manager 6.x fails to accept and apply Custom CA Certificate (2144949)

  • 1 Ratings
Language Editions

Symptoms

  • vRealize Operations Manager certificate wizard shows the certificate as valid but does not accept the certificate.
  • The default certificate is still shown after applying the new certificate.
  •  You do not see any errors in the vRealize Operations Manager UI.

Cause

This issue occurs when the order format of the pem file is incorrect or a certificate is not present in the chain.

Resolution

To resolve the issue, correct the order of certificates in pem file.

The correct order of the pem file:

-----BEGIN CERTIFICATE-----
(Your Primary SSL certificate: your_domain_name.crt)
-----END CERTIFICATE-----
-----BEGIN RSA PRIVATE KEY-----
(Your Private Key: your_domain_name.key)
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
(Your Intermediate certificate: DigiCertCA.crt)
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
(Your Root certificate: TrustedRoot.crt)
-----END CERTIFICATE


Note: Make sure the pem file has valid Root CA applied at the end of the file.

Additional Information:
 
To verify that all certificates in the issuing chain are included in .pem file, using one of these link:

  • https://certlogik.com/decoder/
  • https://www.sslshopper.com/certificate-decoder.html
  • https://redkestrel.co.uk/products/decoder/

Note: Paste each --BEGIN and --END portion of the pem file into a decoder and then verify that they are in the correct order in the pem file.

To revert to the default certificates (if applying an incorrectly formatted new certificate causes cluster issues):

  1. Run these 2 commands on each node as the root user:

    /usr/bin/env python /usr/lib/vmware-casa/bin/activate_web_certificate.py DEFAULT
    /usr/bin/env python /usr/lib/vmware-vcopssuite/utilities/bin/restartHttpd.py

  2. Run this command to restart the vRealize Operations Manager services:

    service vmware-vcops restart

See Also

Language Editions

zh_cn,2147153

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 1 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.

What can we do to improve this information? (4000 or fewer characters)




Please enter the Captcha code before clicking Submit.
  • 1 Ratings
Actions
KB: