To update the vCloud Availability for vCloud Director Service Manager Portal certificate, you can generate a new self-signed certificate with the vCloud Availability Installer Appliance, or import an externally signed certificate.

Generate a New Self-Signed Certificate

To generate a new self-signed certificate and replace the old vCloud Availability for vCloud Director Service Manager Portal certificate, complete the following steps.

  1. To verify that you are replacing the correct vCloud Availability for vCloud Director Service Manager Portal certificate, run the following command on the vCloud Availability Installer Appliance.

    # vcav vcd-ui print-certificate --ui-address=SMP-host-IP-address

    The following information is displayed.

    Issued By: 10.192.43.10
    Common Name: 10.192.43.10
    Fingerprint: 2A:65:4A:EC:63:BA:2F:36:EA:DF:CA:5E:A3:6F:46:98:D8:73:F4:C2
    Start Date: 2016-12-15 01:07:16
    End Date: 2021-12-14 01:07:16

    Write down the Fingerprint of the certificate. You need it to replace the certificate in the next step.

  2. Replace the vCloud Availability for vCloud Director Service Manager Portal certificate by running the following command.

    # vcav vcd-ui replace-certificate --ui-address=SMP-host-IP-address \
    --thumbprint=2A:65:4A:EC:63:BA:2F:36:EA:DF:CA:5E:A3:6F:46:98:D8:73:F4:C2

    The system displays an OK message.

  3. Verify that the replacement operation completed successfully by running the following command.

    # vcav vcd-ui print-certificate --ui-address=SMP-host-IP-address

    The system displays the following information.

    Issued By: 10.192.43.10
    Common Name: 10.192.43.10
    Fingerprint: E6:A8:5C:4E:B3:94:9E:D5:E8:30:25:A2:49:E6:21:8D:E7:22:6F:BA
    Start Date: 2016-12-15 12:55:12
    End Date: 2021-12-14 12:55:12

    The new Fingerprint value indicates that the certificate is successfully replaced. You can note down the new Fingerprint for future operations.

Import an Externally Signed Certificate

To import an externally signed certificate, run the following command on the vCloud Availability Installer Appliance.

Standard Command

Command Using Registry

# vcav vcd-ui configure-smp \
--reconfigure \
--ui-address=$SMP-host-IP-address \
--https-certificate=/file-path-to-certificate-file \
--https-key=/file-path-to-certificate-public-key \
--truststore-password-file=~/.ssh/.truststore \
--vcd-address=$VCD_ADDRESS \
--vcd-user=$VCD_USER \
--vcd-password-file=~/.ssh/.vcd \
--sso-user=administrator@vsphere.local \
--sso-password-file=~/.ssh/.sso
# vcav vcd-ui configure-smp \
--reconfigure \
--ui-address=$SMP-host-IP-address \
--https-certificate=/file-path-to-certificate-file \
--https-key=/file-path-to-certificate-public-key \
--truststore-password-file=~/.ssh/.truststore \
--vcd=vcd-01-name

The system displays and OK message, after the process completes.