To allow secure connection to the cross-region Workspace ONE Access cluster, import the certificate for the VIP in NSX-T Data Center.

Prerequisites

If you are using an intermediate certificate authority, verify that the structure of the PEM file is:
  1. Leaf Certificate (Workspace ONE Access)
  2. Intermediate CA Certificate
  3. Root CA Certificate
  4. Private Key

Procedure

  1. In a Web browser, log in to NSX-T Manager for the Management domain by using the user interface.
    Setting Value
    URL https://sfo-m01-nsx01.sfo.rainpole.io/login.jsp?local=true
    User name admin
    Password nsx-t_admin_password
  2. On the main navigation bar, click System.
  3. In the navigation pane, click Certificates, and click the Certificates tab.
  4. From the Import drop-down menu, select Import certificate.
  5. On the Import certificate dialog box, configure the settings and click Import.

    Setting

    Value

    Name

    xreg-wsa01-certificate

    Certificate contents

    xreg-wsa01.2.chain.pem

    Private key

    xreg-wsa01.key

    Password

    xreg_wsa01_certificate_password

    Service certificate

    Yes