The SSL certificate installed on vRealize Operations Manager must include all nodes in the subject alternative names (SANs), including all remote collector nodes. Before adding remote collectors in an additional VMware Cloud Foundation instance, you must update the certificate to include the new remote collector nodes if they are not already present in the SSL certificate.

You import the newly generated certificate to the vRealize Suite Lifecycle Manager certificate locker.

UI Procedure

  1. Log in to vRealize Suite Lifecycle Manager at https://<vrealize_suite_lifecycle_manager_fqdn> as vcfadmin@local.
  2. On the My services page, click Locker.

  3. In the navigation pane, click Certificates.

  4. On the Certificates page, click Import.

    The Import certificate page appears.

  5. In the Name text box, enter a name for the new vRealize Operations Manager certificate according to your values in the VMware Cloud Foundation Planning and Preparation Workbook.

  6. Click Browse file, navigate to the new vRealize Operations Manager certificate PEM file, and click Open.

  7. Click Import.

PowerShell Procedure

  1. Start Windows PowerShell.

  2. Replace the values in the sample code with values from your VMware Cloud Foundation Planning and Preparation Workbook and run the commands in the PowerShell console.

    $sddcManagerFqdn = "sfo-vcf01.sfo.rainpole.io"
$sddcManagerUser = "administrator@vsphere.local"
$sddcManagerPass = "VMw@re1!"

$certificateAlias = "xint-vrops01-new"

  3. Perform the configuration by running the command in the PowerShell console.

    Import-vRSLCMLockerCertificate -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -certificateAlias $certificateAlias

  4. In the dialog box, navigate to the vRealize Operations Manager certificate PEM file, and click Open.