To establish a trusted connection to vRealize Suite Lifecycle Manager, you replace the SSL certificate on the appliance with a custom certificate signed by a certificate authority available on the parent Active Directory or on the intermediate Active Directory.

Procedure

  1. Rename the certificates generated using the VMware Validated Design Certificate Generation Utility for vrslcm01svr01a.rainpole.local.

    Original Certificate Filename

    New Certificate Filename

    vrslcm01svr01a.2.chain.pem

    server.crt

    vrslcm01svr01a-orig.key

    server.key

  2. Overwrite the existing server.crt and server.key files in the /opt/vmware/vlcm/cert directory with the previously generated CA signed certificate files.

    You can use SCP software like WinSCP.

  3. Log in to vRealize Suite Lifecycle Manager appliance by using Secure Shell (SSH) client.
    1. Open an SSH connection to vrslcm01svr01a.rainpole.local.
    2. Log in using following credentials.

      Setting

      Value

      User name

      root

      Password

      vrslcm_root_password

  4. Restart the vRealize Suite Lifecycle Manager services to update the appliance certificate.
    1. Restart the system services by running the following command in the SSH session.
      systemctl restart vlcm-xserver
    2. Check the status of the system services by running the following command in the SSH session.
      systemctl status vlcm-xserver
  5. After restarting the services, verify that the certificate is updated on the appliance.
    1. Close any opened Web browsers, open a new Web browser window, and go to https://vrslcm01svr01a.rainpole.local/vrlcm.
    2. Verify that you see the new certificate in the browser.