You can replace the default certificates with your custom certificates.

Prerequisites

Procedure

  1. You can open VM Console of Photon VM from the vCenter Server user interface or SSH to Photon VM.
  2. Log in to VM where VMware Skyline Health Diagnostics for vSphere installed as a root user.
  3. To navigate to the root directory, run the command cd /.
  4. To create a directory under the root folder on a VM where VMware Skyline Health Diagnostics for vSphere is installed, run the command mkdir newcert.
  5. To change the working directory to the new directory, run cdnewcert.
  6. To copy the configuration file to the present location, run the command cp /opt/vmware-shd/vmware-shd/conf/ssl/conf ./..
  7. Edit the configuration as required
    1. To edit the configuration file using vi editor, run command vi conf.
    2. To match your organization details, edit the [ req_distinguished_name ] section.
    3. Set the entries for commonName and DNS.1 to match the FQDN of the VM.
  8. To generate a new certificate signing request run openssl req -new -config conf -newkey rsa:2048 -nodes -keyout rui.key -out rui.csr.

    Key and certificate signing request (CSR) files are created in the current directory. (rui.csr, rui.key).

  9. Use the rui.csr file for signing request from our internal/external CA.

Results

Certificate signing request generated.

What to do next

Send the certificate signing request to your internal or external CA for signing.