DUPLICATE certificates detected by the vCert tool
search cancel

DUPLICATE certificates detected by the vCert tool

book

Article ID: 411858

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

  • When running "1. Check current certificate status" from the vCert tool provided in KB 385107, I found that some certificates were reported with a DUPLICATE status.

Checking CA certificates in VMDir [by CN(id)]
-----------------------------------------------------------------
########################################                    VALID
########################################                DUPLICATE
########################################                DUPLICATE
########################################                DUPLICATE

Checking CA certificates in VECS [by Alias]
-----------------------------------------------------------------
########################################                    VALID
########################################                DUPLICATE
########################################                DUPLICATE
########################################                DUPLICATE

Note: Different IDs are shown for each of the duplicates.

  • There is no impact on the operation of the vCenter Server itself.

Environment

vCenter Server 7.0

Cause

The vCert certificate check verifies the subjects of certificates registered in VECS and VMdir.
If certificates with the same subject are found, they are flagged as DUPLICATE.

This issue may occur in environments where the certificate renewal process has previously been performed using the certificate-manager command.

Resolution

If the vCenter Server is operating normally, this is only a display issue and can be safely ignored.

Additional Information

Powered by Wolken Software