After you add the standard key provider to the vCenter Server system, you can establish a trusted connection.

The exact process depends on the certificates that the key provider accepts, and on your company policy.

Prerequisites

Add the standard key provider.

Procedure

  1. Navigate to the vCenter Server.
  2. Click Configure and select Key Providers under Security.
  3. Select the key provider.
    The KMS for the key provider is displayed.
  4. Select the KMS.
  5. From the Establish Trust drop-down menu, select Make KMS trust vCenter.
  6. Select the option appropriate for your server and follow the steps.
    Option See
    vCenter Server Root CA certificate Use the Root CA Certificate Option to Establish a Standard Key Provider Trusted Connection.
    vCenter Server Certificate Use the Certificate Option to Establish a Standard Key Provider Trusted Connection.
    Upload certificate and private key Use the Upload Certificate and Private Key Option to Establish a Standard Key Provider Trusted Connection.
    New Certificate Signing Request Use the New Certificate Signing Request Option to Establish a Standard Key Provider Trusted Connection.