Update the certificate chain of vRealize Log Insight to use a trusted non-default certificate after deployment or to replace a certificate that is soon to expire. In this way, connection to the vRealize Log Insight user interface remains trusted.


  1. Log in to the vRealize Log Insight user interface.
    1. Open a Web browser and go to https://sfo01vrli01.sfo01.rainpole.local.
    2. Log in using the following credentials.



      User name




  2. In the vRealize Log Insight user interface, click the configuration drop-down menu icon  and select Administration.
  3. Under Configuration, click SSL.
  4. On the SSL Configuration page, next to New Certificate File (PEM format) click Choose File, browse to the location of the PEM file on your computer, and click Save.

    Certificate Generation Option

    Certificate File

    Using the CertGenVVD tool


    The certificate is uploaded to vRealize Log Insight. 

  5. Open a Web browser and go to https://sfo01vrli01.sfo01.rainpole.local

    A warning message that the connection is not trusted appears.

  6. To review the certificate, click the padlock icon  in the address bar of the browser, and verify that Subject Alternative Name contains the names of the vRealize Log Insight cluster nodes.