You can use the TrustedRootChains interface to add, delete and read trusted root certificate chains.
If you want to use an enterprise or third-party certificate authority (CA) for certificate management of your vSphere environment, you must first establish trust with that CA. You can do this by adding the root certificate of the external CA to the trusted root store of your vCenter Server system.
Adding a root certificate or certificate chain to the vCenter Server trusted certificate store establishes trust with an enterprise or third-party certificate authority. You can add a root certificate to vCenter Server as a prerequisite for other scenarios such as setting a third-party or enterprise machine SSL certificate.
Prerequisites
Verify that the root certificate or certificate chain you want to add is available on your machine.
Verify that you have the required privileges:
and .