This article provides instructions to create custom SSL certificates for VirtualCenter/vCenter Server with OpenSSL and Microsoft Certificate Services Web Enrollment.
Note: This article assumes that you have already installed and configured a Microsoft Certificate Services Web Enrollment Root Certificate Authority (CA).
To create custom certificates:
Note: Run all commands from c:\openssl\bin
.
c:\openssl\bin\openssl.cnf
file and enter your default information.rui.key
with this command:openssl genrsa 1024 -out rui.key
Create the certificate signing request rui.csr
with this command:openssl req -new -key rui.key -out rui.csr -config openssl.cnf
C:\Users\Administrator\Desktop\openssl-0.9.8k_X64\bin\openssl.exe
if installed in C:\Users\Administrator\Desktop\
.genrsa -out rui.key 1024
rui.key
and openssl.cnf
files:openssl req -new -key "C:\Users\Administrator\Desktop\openssl-0.9.8k_X64\bin\rui.key" -out rui.csr -config "C:\Users\Administrator\Desktop\openssl-0.9.8k_X64\openssl.cnf"
rui.crt
:http://root_ca/certsrv
c:\openssl\bin\rui.csr
in a text editor. Select and copy the contents of the file. rui.csr
file into the Saved request field. c:\openssl\bin
and save the file as rui.crt
.rui.pfx
, run this command:openssl pkcs12 -export -in rui.crt -inkey rui.key -name rui -passout pass:testpassword -out rui.pfx
testpassword
, must not be changed.rui.key
, rui.crt
, and rui.pfx
files from C:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\SSL\
to a backup folder.rui.key
, rui.crt
, and rui.pfx
files to C:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\SSL\
. vpxd.exe –p