To create a trust chain for connecting to the VMware Cloud Foundation components, import the trusted certificate of your certificate authority to vRealize Orchestrator.
UI Procedure
Log in to the vRealize Orchestrator Control Center at https://<vra_cluster_fqdn>/vco-controlcenter as root.
Click Certificates.
Click the Trusted certificates tab and, from the Import drop-down menu, select Import from PEM-encoded file.
Click Browse, navigate to the certificate authority Root64.cer file, and click Import.
Verify the certificate information and click Import.
If there are additional certificate chains that must be trusted by vRealize Orchestrator, repeat this procedure for each additional certificate.
PowerShell Procedure
-
Start Windows PowerShell.
-
Replace the values in the sample code with values from your VMware Cloud Foundation Planning and Preparation Workbook and run the commands in the PowerShell console.
$sddcManagerFqdn = "sfo-vcf01.sfo.rainpole.io" $sddcManagerUser = "administrator@vsphere.local" $sddcManagerPass = "VMw@re1!" $vraUser = "configadmin" $vraPass = "VMw@re1!"
-
Perform the configuration by running the command in the PowerShell console.
Add-vROTrustedCertificate -server $sddcManagerFqdn -user $sddcManagerUser -pass $sddcManagerPass -vraUser $vraUser -vraPass $vraPass
-
Navigate to the Root CA .cer certificate file and click Open.
