SRM Connection Thumbprint Warning Symbol in the VAMI on port 5480
search cancel

SRM Connection Thumbprint Warning Symbol in the VAMI on port 5480

book

Article ID: 379832

calendar_today

Updated On:

Products

VMware Live Recovery

Issue/Introduction

The vCenter connection thumbprint will show a warning symbol instead of a green checkmark in most environments.

This is technically not an issue and does not impact the product. However, you can change it to a green checkmark if your team desires.

Environment

Site Recovery Manager 8.x

Live Recovery Manager 9.x

Resolution

  1. Download root CA from vCenter UI
    Browse to VCenter URL in address box 
    On righthand side right click on Download trusted root CA certificates and Save link as certs.zip

  2. Unzip certs.zip and extract the folder certs/Win and locate the Security Certificate .crt files that correspond to vCenter. Open the file and look at Issuer/Subject to determine which vCenter the crt file relates to. 
  3. To import with the graphical UI: Follow these instructions to upload from VAMI

Using the CLI:

  1. Use winSCP or similar program to copy Certs/lin folder to the SRM/VLR Home/Admin folder
  2. Copy all files to /etc/ssl/certs from /home/admin/lin
    cp /home/admin/lin/* /etc/ssl/certs/
  3. Change file ownership of all files in folder. 
    chmod a+r /etc/ssl/certs/*
  4. In SRM/VLR 8.8 and above rehash the certificate files to re-create pem links with the following command:
    rehash_ca_certificates.sh
  5. Reboot SRM/VLR appliance and once you log in the connection to vCenter will appear as a green checkmark. 

Additional Information

If customer is using custom certificate, we might move all the root and intermediate certificate and let the appliance choose correct certificate. 

Powered by Wolken Software