If the certificate of vRealize Operations Manager or vRealize Log Insight expires, replace it and update it on the management components in the region to maintain secure connection.
Procedure
Replace Certificate on the vRealize Suite Lifecycle Manager Appliance in Region A To establish a trusted connection to vRealize Suite Lifecycle Manager, you replace the SSL certificate on the appliance with a custom certificate signed by a certificate authority available on the parent Active Directory or on the intermediate Active Directory.
Replace vRealize Operations Manager Certificate in Region A Log in to the administrator interface of the master node of vRealize Operations Manager and use the PEM file generated by the CertGenVVD utility to replace the current certificate.
Replace vRealize Log Insight Certificate in Region A Update the certificate chain of vRealize Log Insight to use a trusted non-default certificate after deployment or to replace a certificate that is soon to expire. In this way, connection to the vRealize Log Insight user interface remains trusted.
Update the SSL Certificate for Event Forwarding to Region B After you replace the certificate of vRealize Log Insight in Region A, you update log forwarding from vRealize Log Insight in Region A to vRealize Log Insight in Region B. Log forwarding in this validated design uses SSL connection to exchange log data. You skip this procedure if the root certificate (Certificate Authority) in vRealize Log Insight in Region A is not replaced.