During a vCenter Appliance upgrade the prechecks in stage 2 will fail with the following errors:

vCenter Upgrade failed at Precheck：FQDN: <vCenterFQDN> is not present in certificate subject alt names

Use an ip address or dns name that is present in the certificate subject alt names or regenerate ssl certificates for sso before continuing

7.x

• vCenter FQDN has been modified since the last time certificates were generated or replaced.
  
  
• Additionally this can occur if certificates were replaced and the hostname short name or full FQDN combination was not utilized.

1. Confirm the FQDN provided in the error is not part of the SAN field of the existing certificate
   
   
2. Proceed to regenerate the vCenter certificates utilizing one of the two methods below while ensuring the IP and SAN fields contain all the encessary FQDN, short name and ip addresses of the vCenter.
   
   
   1. Certificate Manager Utility (Built In) : Using vSphere Certificate Manager to Replace SSL Certificates
   2. vCert Utility: vCert - expired certificate replacement script
      
      
3. Once certificates are replaced, run the upgrade once more to confirm issue is resolved.