Generate Manually Key Pairs and Certificate Signing Requests for the Management Components in Region A
Create certificate signing requests for the management components in the SDDC and send them a certificate authority, such as the Microsoft AD server in Region A, for getting a signed component certificate.
- Generate Manually Key Pairs and Certificate Signing Requests for the ESXi Hosts in Region A If you plan to manually generate certificates for the ESXi hosts, generate a key pair and Certificate Signing Request (CSR) files for the hosts in the management cluster first and for to the hosts in the shared edge and compute cluster next. Submit the CSR file to the certificate authority for signing.
- Generate Manually Key Pair and Certificate Signing Request for the Platform Services Controller Instances in Region A Generate a single Certificate Signing Request (CSR) for the Platform Services Controller load balancer and submit it to the certificate authority for signing.
- Generate Manually Key Pair and Certificate Signing Request for vCenter Server in Region A If you plan to generate manually a CA-signed certificate for vCenter Server in Region A, create a Certificate Signing Request (CSR) and submit it to the certificate authority for signing.
- Generate Manually Key Pairs and Certificate Singing Requests for NSX in Region A If you plan to generate manually a CA-signed certificate for NSX, generate a Certificate Signing Request (CSR) and submit it to the certificate authority for signing.
- Generate Manually a Key Pair and Certificate Signing Request for vSphere Data Protection in Region A Generate the files that are required to obtain a CA-signed certificate for vSphere Data Protection.
- Generate Manually Key Pairs and Certificate Signing Requests for the Cloud Management Platform in Region A vRealize Automation, vRealize Orchestrator and vRealize Business use SSL certificates for secure communication.
- Manually Generate a Key Pair and Certificate Signing Request for vRealize Operations Manager vRealize Operations Manager comes with default self-signed certificates that are generated and signed at installation time. You can create a key pair and a CSR, and use them to generate a CA-signed certificate on the dc01sfo.sfo01.rainpole.local AD server that authenticates the analytics cluster of vRealize Operations Manager over TLS or SSL.
- Generate Manually a Key Pair and Certificate Signing Request for vRealize Log Insight in Region A To create a CA-signed certificate for vRealize Log Insight, generate a certificate signing request (CSR) on the virtual appliance for the master node and use the intermediate certificate authority that is available on the child Active Directory (AD) server to sign the certificate.
Parent topic: Region A Certificate Replacement