• Configuring Custom CA in Operations Manager fails with below error.

• Under Fleet Manager's /var/log/vmware/vrlcm/vrlcm.log, below log snippets are found:
  
  Unable to configure certificate authority. YYYY-MM-DDTHH:MM:SS ERROR vrlcm[####] [http-###-8080-exec-2] [c.v.v.l.l.c.MSCARestClient]  -- Exception occurred while trying to validate Microsoft CA
org.springframework.web.client.ResourceAccessException: I/O error on GET request for "https://<microsoftcaserver.example.com>/certsrv": Certificate for <microsoftcaserver.example.com> doesn't match any of the subject alternative names: []; nested exception is javax.net.ssl.SSLPeerUnverifiedException: Certificate for <microsoftcaserver.example.com> doesn't match any of the subject alternative names: []
        at org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:791) ~[spring-web-5.3.43.jar!/:5.3.43]
        at org.springframework.web.client.RestTemplate.execute(RestTemplate.java:757) ~[spring-web-5.3.43.jar!/:5.3.43]
        at org.springframework.web.client.RestTemplate.exchange(RestTemplate.java:627) ~[spring-web-5.3.43.jar!/:5.3.43]

• VCF Fleet Manager 9.x
• VCF Operations Manager 9.x

This issue can be caused due to the SSL Certificate selected under Site Binding is invalid or https protocol type is not added in the Site binding.

1. Setup/bind SSL Certificate in the Microsoft CA/IIS Webserver.
   For more information, refer How to Set Up SSL on IIS 7 or later
   
   
2. Then retry Configure CA in the VCF Operations Manager.

• Please refer, Configure a Certificate Authority for VMware Cloud Foundation