The alarm "STS Signing Certificates are about to expire" is issued but It actually expires in 91 days.
search cancel

The alarm "STS Signing Certificates are about to expire" is issued but It actually expires in 91 days.

book

Article ID: 429527

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

  • If an STS certificate is about to expire, vCenter Server will issue an alarm.
  • An event will be issued indicating that the STS certificate expires in 90 days.
    Renew STS Signing Certificates: STS Signing Certificate # 0 with subject CN=ssoserverSign expires in 90 days
  • When you check by the vCert script, it actually expires in 91 days.

Cause

This is an expected behavior.
An STS certificate expiration alarm will be issued 90.999 days before the expiration date.

Resolution

Before the STS certificate expires, renew the STS certificate with the vCert script.

vCert - Scripted vCenter expired certificate replacement

Additional Information

「STS署名証明書の有効期限が間もなく切れます」という警告が表示されますが、実際には91日後に有効期限が切れます。

Powered by Wolken Software