Adding an SSL Certificate to the vROps Truststore (Unity)

For added security, we recommend adding an SSL certificate to the vROps truststore for your Dell EMC Unity host server.

Note: Different levels of security can be configured in the Management Pack for Dell EMC Unity. The least secure configuration is to leave the default selection of False for the SSL Configuration Advanced Setting. In this configuration, the Management Pack will accept all SSL certificates. For added security, you can enable SSL by following the instructions below and selecting True for the SSL Configuration Advanced Setting when Creating an Adapter Instance (Unity)

Obtain the SSL certificate for your Unity host server from your Internet browser. Export the certificate as an X.509 Certificate (PEM).
Copy the certificate to your vROps machine.
Use ‘ssh’ to log in to the vROps machine as the root user, then run the following command:
Linux:

$VCOPS_BASE/jre/bin/keytool -import -alias <product_alias> -file /tmp/<certfile> -keystore “$VCOPS_DATA_VCOPS/user/conf/ssl/tcserver.truststore” -storepass `grep ssltruststorePassword /storage/vcops/user/conf/ssl/storePass.properties | sed s/ssltruststorePassword=//` -trustcacerts

Windows:

%VCOPS_BASE%\jre\bin\keytool -import -alias <product_alias> C:\path\to\certfile -keystore “%VCOPS_DATA_VCOPS%\user\conf\ssl\tcserver.truststore” -storepass <truststore_password> -trustcacerts

Parameter Descriptions:
- -alias is a unique name for each key that you add (per host)
- certfile is the location where the cert file was saved
Run the reboot command to re-start the vROps machine for the changes to take effect.