After changing the VMware Cloud Director endpoint or renewing its SSL certificate, configure VMware Cloud Director Availability to re-establish the trust with the new certificate and communicate securely with VMware Cloud Director.
Note:
- Since VMware Cloud Director Availability 4.5, when establishing a secure connection to VMware Cloud Director that uses an SSL certificate issued by a public certification authority (CA-issued), the Cloud Service performs complete certificate verification.
For an existing deployment to use this functionality, first upgrade to version 4.5, then follow this procedure.
- Alternatively, the Cloud Service performs an exact certificate match when the certificate is not CA-issued. All previous VMware Cloud Director Availability versions also use this same behavior with any VMware Cloud Director SSL certificate, regardless of whether it is CA-issued.
Prerequisites
- Verify that VMware Cloud Director Availability 4.5 or later is deployed for performing full certificate verification when a public certificate authority issued the VMware Cloud Director SSL certificate.
- Verify that the SSL certificate of VMware Cloud Director is successfully renewed. For information about generating and importing SSL certificates in VMware Cloud Director, see VMware KB 1026309.
Procedure
- Log in to the VMware Cloud Director Availability service management interface.
- In a Web browser, go to https://Appliance-IP-address/ui/admin.
- Select SSO login or Appliance login, and enter the single sign-on or the root user credentials.
- Click Login.
- In the left pane under Configuration, click Settings.
- To re-establish the trust, re-apply the address of the VMware Cloud Director endpoint.
- Under Service endpoints, next to the VMware Cloud Director address click Edit.
- Verify the URL of the VMware Cloud Director endpoint and click Apply.
- Verify the thumbprint of the VMware Cloud Director certificate and click Accept.