Site Recovery Manager uses TLS certificates and private keys to protect network communication and securely establish authentication with other servers.
Site Recovery Manager Virtual Appliance Certificates and Keys
All Site Recovery Manager Virtual Appliance services run behind a reverse HTTP proxy and do not use SSL for the communication path to the proxy. There is only one certificate for the proxy service. The certificate files are stored in /opt/vmware/srm/conf/keys/vmware-dr/.
CA certificate or private key or both | Location |
---|---|
TLS certificate and key for solution user created during the Site Recovery Manager Appliance deployment | In the /opt/vmware/srm/conf/keys/vmware-dr/su-Site Recovery Manager UUID folder. |
TLS certificate and key for solution user on the remote site | In the /opt/vmware/srm/conf/keys/vmware-dr/remote-su-Site Recovery Manager UUID folder. |
TLS certificate and key for the HTML5 user interface solution user created during the Site Recovery Manager Appliance deployment | In the /opt/vmware/dr-client/lib/h5dr.keystore file. |
For more information about the Site Recovery Manager authentication mechanisms, see the Site Recovery Manager Authentication topic in the Site Recovery Manager Installation and Configuration Guide.