You can import a certificate from a trusted certificate authority when you are logged in to an ESXi host with the VMware Host Client.
Procedure
- Click Manage in the VMware Host Client inventory and click Security & Users.
- Click Certificates and click Import new certificate.
- Generate a certificate signing request:
Option |
Description |
Generate FQDN signing request |
- Click Generate FQDN signing request, click the Copy to clipboard button, and click Close.
- To generate the signed certificate, pass the certificate signing request to the certificate authority (CA).
- In the Certificate text box, paste the generated signed certificate in PEM format and click Import.
|
Generate IP signing request |
- Click Generate IP signing request, click the Copy to clipboard button, and click Close.
- To generate the signed certificate, pass the certificate signing request to the CA.
- In the Certificate text box, paste the generated signed certificate in PEM format and click Import.
|
You do not have to import the certificate immediately. To make sure that you can use the signed certificate, do not restart the host between generating the certificate signing request and importing the certificate.
The certificate signing request is then passed to the certificate authority to generate the official certificate.
An FQDN request has the fully qualified host name of the host in the resulting common name field of the certificate. The IP signing request has the current IP address of the host in the common name field.