Replace the Site Recovery Manager Certificate for Site Protection and Disaster Recovery for VMware Cloud Foundation

You replace the SSL certificate on Site Recovery Manager to keep the communication with this component trusted. You generate a custom certificate by using the CertGenVVS utility.

Prerequisites

If you replace the certificates of all management components in each site, you must replace the certificates of all vCenter Server and NSX Manager instances before Site Recovery Manager to ensure a two way trust.

Procedure

Log in to the Site Recovery Manager management interface at https://<srm_fqdn>:5480 as admin.
In the left navigation pane, click Certificates.
On the Appliance certificate page, click Change.

In the Change certificate dialog box, configure the settings and click Change.


Setting	Value
Select certificate type	Use a PKCS #12 certificate file
Certificate file	Select the p12 file that you generated by using CertGenVVS.
Password	Enter the certificate passphrase.

Log in to the management domain vCenter Server at https://<management_vcenter_server_fqdn>/ui by using an account with Administrator privileges.
In the Site recovery inventory, verify that status for vSphere Replication and Site Recovery Manager is OK.