Applying third-party certificates to Appliance Virtualization Platform

Last Updated : Apr 17, 2020 |

About this task

Use this procedure to create, download, upload, and push third-party certificates to Appliance Virtualization Platform hosts.

Before you begin

  • Add a location.

  • Add an Appliance Virtualization Platform host to the location.

  • Ensure that the certificate on the Appliance Virtualization Platform host is valid.

Note:

If you are using a third-party generated CSR, add the private key for the CSR in the file /etc/vmware/ssl/rui_csr_temp.key before installing the certificate from Solution Deployment Manager.

Procedure

  1. On the System Manager web console, click Services > Solution Deployment Manager > Application Management.
  2. In Application Management Tree, select a location.
  3. On the Platforms tab, in the Platforms for Selected Location <location name> area, select an Appliance Virtualization Platform host.
  4. Optional Add the details of the generic CSR.

    If you add the generic CSR details, the system pre-populates the values in the View/Generate CSR dialog box.

    For more information about creating the generic CSR, see Creating or editing generic CSR.

  5. To generate CSR, do the following:
    1. Click More Actions > AVP Cert. Management > Manage Certificate.
    2. In the Load Certificate dialog box, select one or more Appliance Virtualization Platform hosts.
    3. Click View/Generate CSR.

      System Manager displays the View/Generate CSR dialog box.

    4. If the generic CSR details are not added for the Appliance Virtualization Platform host, add the details of the generic CSR.
    5. Click Generate CSR.

      The system generates CSR for the Appliance Virtualization Platform host.

    6. In the Current Action column, click Status Details to view the status.
  6. To download CSR, do the following:
    1. Click More Actions > AVP Cert. Management > Manage Certificate.
    2. In the Load Certificate dialog box, select one or more Appliance Virtualization Platform hosts.
    3. Click Download CSR.

      In case of Firefox browser, the system prompts you to save the CSR.zip file.

    4. In the Current Action column, click Status Details to view the status.

      In the Download CSR Status dialog box, the system displays the path of the downloaded CSR.zip file.

  7. Extract the downloaded certificates, and ensure that the third-party signs them.
  8. To upload and push the signed certificate from a third-party CA, do the following:
    1. Click More Actions > AVP Cert. Management > Manage Certificate.
    2. In the Load Certificate dialog box, select one or more Appliance Virtualization Platform hosts.
    3. Click Browse and select the required certificates from the local computer.
    4. Click I Agree to accept to add the same certificate in SDM.
    5. Click Push Certificate.
    6. In the Current Action column, click Status Details to view the status.