1. To generate the certificate request, you must install and configure OpenSSL. For more information, see Configuring OpenSSL for installation and configuration of CA signed certificates in the vSphere environment (2015387).
   
   
2. Configuring vCenter Server 5.0 certificates should be the first step in a deployment. In a new installation, it also reduces the amount of overhead required for implementation because hosts need not be reconnected to vCenter Server. In an existing configuration, ESXi hosts must be reconnected after configuring the certificate because the password used to connect to vCenter Server is encrypted with the certificate. At this point, vCenter Server should be installed and configured appropriately and all functions (such as, Web services including Hardware Status) should be functional. If they are not working before the configuration of the certificates, they will not work later. For more information, see Configuring CA signed certificates for VMware vCenter Server 5.0 (2015421).
   
   
3. Configuring ESXi 5.0 Host certificates is different than previous releases due to the fact that ESXi has been secured and has no service console. For more information, see Configuring CA signed certificates for ESXi 5.x hosts (2015499).
   

If your issue persists even after trying these steps:

• Collect the custom certificate configuration information, including the OpenSSL configuration file (normally openssl.cfg), rui.key, rui.crt, and rui.csr.
• Gather the VMware Support Script Data. For more information, see Collecting diagnostic information for VMware products (1008524) .
• File a support request with VMware Support, include the gathered information, and note this Knowledge Base article ID (2015383) in the problem description. For more information, see How to Submit a Support Request .