If you are assigning App Volumes AppStacks when creating JMP assignments, configure your JMP Server instance to use the App Volumes Manager instance's certificate so that it can securely communicate with the App Volumes Manager instance.

In a PoC installation environment, you must export the self-signed certificate of the App Volumes Manager instance into a certificate file named av-selfsigned.cert.pem file in order for JMP Server to use it. If App Volumes Manager is using a CA-signed certificate, configure JMP Server to use your organization’s certificate chain file, ca-chain.cert.pem, to authenticate the App Volumes Manager instance. See Configure JMP Server to Use a Certificate Chain File.

Prerequisites

  • JMP Server must be installed.

  • You must have administrative access to the App Volumes Manager instance or the load balancer that manages it.

Procedure

  1. From your JMP Server host, use a Web browser to log in to the App Volumes Manager instance or the load balancer that manages the App Volumes Manager instances in your environment.
  2. To locate the certificate information that is used by App Volumes Manager instance or load balancer, use your Web browser's certificate manager and export the certificate file in Base-64 encoded X.509 (.CER) format to the C:\Program Files (x86)\VMware\JMP\com\av-selfsigned.cert.pem file.
    Important:

    You must save the exported certificate file with the .pem file extension, and not with the .cer or .crt file extensions. If necessary, open the exported certificate file in a text editor and save it as av-selfsigned.cert.pem.

    For example, when using a Google Chrome Web browser, click Settings > Advanced and select Manage certificates. In the Certificates dialog box, select the App Volumes Manager certificate and click Export. Use the Certificate Export Wizard to export the Base-64 encoded X.509 (.CER) format of the App Volumes Manager certificate file into the C:\Program Files (x86)\VMware\JMP\com\av-selfsigned.cert.pem file. You might need to rename the file so that it has the .pem file extension only, instead of the .pem.cer file extension.

  3. If you have finished all the tasks necessary to configure the TLS certificates necessary to make JMP Server more secure, restart the JMP Server services. See Overview of Tasks for Setting Up TLS Certificates for JMP Server to review any remaining TLS certificate configuration tasks.