To create an environment, you can make use of the existing certificate.


  • Verify that the supported key length for certificate import is 2048 bits

  • Replace Certificate is supported for N versions of products in LCM 2.0. For replacing vRSLCM VAMI/VA certificate, see VMware Validate Design.


  1. Under the Certificate page, enable the toggle to provide Product Specific Certificate.

    Enabling the Product Specific Certificate allows you to specify the certificates at the product level but not at the environment level.

  2. Select the Certificate from the drop-down menu.
  3. To create a certificate, click plus sign.

    In the Add Certificate window, enter the required details.



    Certificate Name

    Enter a valid certificate name.

    Common Name

    Enter a common name to identify the certificate.


    Enter the Organization name.

    Organizational Unit

    Enter the Organization Unit.

    Country Code

    Enter a country code which must be in two characters only.


    Enter your locality.


    Enter the State.

    Domain Name

    Enter a valid domain name.

    IP Address

    Enter the IP address in which you are assigning the certificate.

  4. Click Generate.
  5. To import an existing certificate, select Import Certificate option.



    Certificate Name

    Enter a valid certificate name.

    Select File

    1. Click Choose File.

    2. Browse to the saved PEM file.


    Enter the Passphrase field, type <Cert- Password>.

    Enter Private Key

    When you upload a PEM file, the private key details are populated automatically.

    Enter Certificate Chain

    When you upload a PEM file, the certificate details are populated automatically.

  6. Click Import.
  7. Click Next. VAMI/VA