vCert tool Reports data-encipherment certificate " MISSING CA"
search cancel

vCert tool Reports data-encipherment certificate " MISSING CA"

book

Article ID: 435401

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

When running vCert script to check certification, data-encipherment shows as "MISSING CA" (vCert - expired certificate replacement script): 

Checking data-encipherment certificate               MISSING CA

Environment

vCenter 8.x

Cause

The data-encipherment store is present, however the root CA is missing.

Resolution

Generate a new data-encipherment certificate using vCert

  1. Launch the vCert script as per the KB article vCert - Scripted vCenter expired certificate replacement
  2. Select Option 3: Manage Certificates.
  3. Select Option 6: Data Encipherment Certificate.
  4. Enter the Single Sign-On (SSO) administrator account
  5. Enter the password for the SSO administrator account.
  6. When prompted at "Generate new Data encipherment certificate? [N]:", enter Y for yes to replace the certificate.
  7. When prompted to restart the vmware-vpxd service, enter Y to proceed with the restart or N to decline.

Additional Information

Reference: vCert - Scripted vCenter expired certificate replacement. 

Powered by Wolken Software