After replacing a vRealize Appliance management site certificate, a system administrator updates all Management Agents to recognize the new certificate to reestablish trusted communications between the virtual appliance management site and Management Agents on IaaS hosts. Each IaaS hosts runs a Management Agent and each Management Agent must be updated.

About this task

Perform these steps for each Management Agent in your deployment after you replace a certificate for the vRealize Appliance management site.

For distributed deployments, you can update Management Agents manually or automatically. For information about automatic update, see Automatically Update Management Agents in a Distributed Environment to Recognize a vRealize Appliance Management Site Certificate

For minimal deployments, you must update Management Agents manually as described in this procedure.

Prerequisites

Obtain the SHA1 thumbprints of the new vRealize Appliance management site certificate.

Procedure

  1. Stop the VMware vCloud Automation Center Management Agent service.
  2. Navigate to the Management Agent configuration file located at [vcac_installation_folder]\Management Agent\VMware.IaaS.Management.Agent.exe.Config, typically C:\Program Files (x86)\VMware\vCAC\Management Agent\VMware.IaaS.Management.Agent.exe.Config.
  3. Open the file for editing and locate the endpoint configuration setting for the old management site certificate. which you can identify by the endpoint address.

    For example:

    
<agentConfiguration id="C816CFBC-4830-4FD2-8951-C17429CEA291" pollingInterval="00:03:00">
      <managementEndpoints>
        <endpoint address="https://vra-va.local:5480" thumbprint="D1542471C30A9CE694A512C5F0F19E45E6FA32E6" />
      </managementEndpoints>
    </agentConfiguration>
  4. Change the thumbprint to the SHA1 thumbprint of the new certificate.

    For example:

    
<agentConfiguration id="C816CFBC-4830-4FD2-8951-C17429CEA291" pollingInterval="00:03:00">
      <managementEndpoints>
        <endpoint address="https://vra-va.local:5480" thumbprint="8598B073359BAE7597F04D988AD2F083259F1201" />
      </managementEndpoints>
    </agentConfiguration>
  5. If there are other managementEndpoint entries, delete them.
  6. Start the VMware vCloud Automation Center Management Agent service.
  7. Login to the virtual appliance management site and go tovRA Settings > Cluster.
  8. Check the Distributed Deployment Information table to verify that the IaaS server has contacted the virtual appliance recently, which confirms that the update is successful.