Online depot server needs to be configured to have signed certificate signed by root CA or provide a chain of certificates that are signed root CA.
Workaround:
As a workaround,
install-cert command can be run on vCenter to temporarily add the Online Server Depot Self Signed Certificate to the SSL Certificate folder on vCenter
WARNING: You can only apply the workaround if you are accepting the Online Depot Self Signed Certificate to be installed on the vCenter.
To add the the self signed certificate to the vCenter Certificates Store, please follow the below steps:
- Login to VCSA through SSH using root.
- Run the below command:
# /usr/lib/vmware-updatemgr/bin/updatemgr-utility.py install-cert <your-online-depot-server-name-or-IP>
To remove the the self signed certificate to the vCenter Certificates Store, please follow the below steps:
- Login to VCSA through SSH using root.
- Run the below command:
# /usr/lib/vmware-updatemgr/bin/updatemgr-utility.py uninstall-cert <your-online-depot-server-name-or-IP>