You can configure self-signed service certificates with your edge gateways, to use in the edge gateways' VPN-related capabilities. If the edge gateway for your vCloud Director organization virtual datacenter has been converted to an advanced edge gateway, you can use the Certificates screen in the vCloud Director tenant portal to create, install, and manage self-signed certificates.

About this task

When the service certificate is available on the Certificates screen, you can specify that service certificate when you configure the edge gateway's VPN-related settings. The VPN presents the specified service certificate to the clients accessing the VPN.

Prerequisites

Verify that at least one CSR is available on the tenant portal's Certificates screen when you open the tenant portal for the edge gateway. See Generate a Certificate Signing Request for an Edge Gateway for information.

Procedure

  1. Launch Edge Gateway Services by completing the following steps.
    1. Click Network > Edge Gateway.
    2. Select the edge gateway to edit, and click Configure Services.

      The tenant portal opens Edge Gateway Services.

  2. Click the Certificates tab.
  3. Select the CSR in the list that you want to use for this self-signed certificate and click SELF-SIGN CSR.
  4. Type the number of days that the self-signed certificate is valid for.
  5. Click Keep.

    The system generates the self-signed certificate and adds a new entry with type Service Certificate to the on-screen list.

Results

The self-signed certificate is available on the edge gateway. In the on-screen list, when you select an entry with type Service Certificate, its details are displayed in the screen.