To replace certificate, generate a certificate signing request. Get the certificate signed by certificate authority. Finally replace the certificates for VMware Skyline Health Diagnostics. You can replace the default certificates with your custom certificates.
Verify that you have root credentials for the VMware Skyline Health Diagnostics appliance.
- Open the appliance console using the vSphere Client or Secure Shell (SSH) client.
- Log in as a root user.
- To navigate to the root directory, run the command cd /.
- To create a directory under the root folder on the VMware Skyline Health Diagnostics appliance, run the command mkdir newcert.
- To change the working directory to the new directory, run cdnewcert.
- To copy the configuration file to the present location, run the command cp /opt/vmware-shd/vmware-shd/conf/ssl/conf ./..
- Edit the configuration as required
- To edit the configuration file using vi editor, run command vi conf.
- To match your organization details, edit the [ req_distinguished_name ] section.
- Set the entries for commonName and DNS.1 to match the FQDN of the appliance.
- To generate a new certificate signing request run openssl req -new -config conf -newkey rsa:2048 -nodes -keyout rui.key -out rui.csr.
Key and certificate signing request (CSR) files are created in the current directory. (rui.csr, rui.key).
- Use the rui.csr file for signing request from the certificate authority.
Certificate signing request is generated.
What to do next
Send the certificate signing request to your certificate authority for signing.