VMware Aria Operations requires importing the new vCenter Server Machine SSL certificate after the vCenter Server certificate is replaced or updated
search cancel

VMware Aria Operations requires importing the new vCenter Server Machine SSL certificate after the vCenter Server certificate is replaced or updated

book

Article ID: 432916

calendar_today

Updated On:

Products

VCF Operations

Issue/Introduction

This article describes the actions required in VMware Aria Operations after updating or replacing the vCenter Server Machine SSL certificate, including how to import the new vCenter Server Machine SSL certificate.

Aria Operations stores certificates for authentication sources to establish secure communication between Aria Operations and the endpoint.

When the Machine SSL certificate for an authentication source such as vCenter Server is replaced, Aria Operations may no longer trust the endpoint. As a result, authentication using that source and data collection may fail until trust is re-established by importing the new vCenter Server certificate.

Environment

Aria Operations 8.18.x

Resolution

When a SSL certificate is replaced for an authentication source such as vCenter Server, the new SSL certificate is added to Trusted Certificates after it is validated through the Validate/Test Connection process. The previous certificate remains stored in Trusted Certificates until it is manually removed.

If a certificate listed under Trusted Certificates expires, banner is displayed on the home page indicating that an expired certificate exists. This may also include certificates that have already been replaced but remain stored in Trusted Certificates.

 

To resolve this issue, remove the old certificate and import the new certificate from the authentication source.

Remove an old vCenter Server Machine SSL certificate stored in Aria Operations

  1. Log in to Aria Operaitons with an adiministrator account
  2. Navigate to Administration > Control Panel > Trusted Certificates 
  3. Locate the expired certificate or the old certificate issued to the vCenter Server.
  4. Select the certificate and delete it.


Import a new SSL certificate from the vCenter Server authentication source

  1. Navigate to Administration > Control Panel > Authentication Sources
  2. Click the ellipsis(...) next to the vCenter Server authentication source and select Edit
  3. Verify that the credentials for the authentication source are correct.
  4. Click on VALIDATE CONNECTION.
  5. If a new certificate is presented, accept the certificate and click OK.

Additional Information

Certificate overview for VMware Aria Operations

Updating External Solutions after replacing the vCenter Server SSL certificate

'Your certificate is expired' banner message in Aria Operations

Alert: 'Adapter instance object is down' and adapter collection stops

VMware Aria Operations requires importing the new vCenter Server Machine SSL certificate after the vCenter Server certificate is replaced or updated (Japanese)

Powered by Wolken Software