You can import a signed CA certificate. After the import and activation, other certificates signed by that CA will be trusted by NSX-T Data Center.

Note that only RSA-based certificates are supported.


Verify that a CA certificate is available.


  1. From your browser, log in with admin privileges to an NSX Manager at https://<nsx-manager-ip-address>.
  2. Select System > Certificates.
  3. Select Import > Import CA Certificate and enter the certificate details.
    Option Description
    Name Assign a name to the CA certificate.
    Certificate Contents Browse to the CA certificate file on your computer and add the file.
    Description Enter a summary of what is included in this CA certificate.
    Service Certificate Set to Yes to use this certificate for services such as a load balancer and VPN. Set to No if this certificate is for the NSX Manager nodes.
  4. Click Import.