Update Event Forwarding in Region A

After you replace the certificate of vRealize Log Insight in Region B, you update log forwarding from vRealize Log Insight in Region A to vRealize Log Insight in Region B.

Procedure

  1. Copy the certificate PEM file for vRealize Log Insight in Region B to the root directory of vrli-mstr-51.lax01.rainpole.local

    1. Use the scp command, FileZilla, or WinSCP to connect to vrli-mstr-51.lax01.rainpole.local

    2. Log in using the following credentials.

      |Setting|Value| |:------|:----| |user name|root| |Password|vrli_regionB_root_password|

    3. Navigate to the \root directory on vrli-mstr-51.lax01.rainpole.local

    4. Copy the certificate PEM file vrli.lax01.2.chain.pem from your computer to the \root directory on the master node. Overwrite any existing file with the same name.

  2. Import the root certificate in the Java keystore on each vRealize Log Insight node in Region A.

    1. Open an SSH session to the vRealize Log Insight node. |Name|Role| |:---|:---| |vrli-mstr-01.sfo01.rainpole.local|Master node| |vrli-wrkr-01.sfo01.rainpole.local|Worker node 1| |vrli-wrkr-02.sfo01.rainpole.local|Worker node 2|

    2. Log in using the following credentials.

      |Setting|Value| |:------|:----| |User name|root| |Password|vrli_regionA_root_password|

    3. By using scp copy the SSL certificate from the master node of vRealize Log Insight in Region B.

      {#GUID-A4543466-F221-444A-815E-4FB2975B3E97__codeblock_36C5753D3DC5436A8A7AC2A5963581F0 .pre .codeblock} scp [email protected]:/root/vrli.lax01.2.chain.pem /root/vrli.lax01.2.chain.pem

    4. When prompted to accept the certificate, type yes

    5. When prompted for the root password, use the following credentials.

      |Setting|Value| |:------|:----| |User name|root| |Password|vrli_regionB_root_password|

    6. Convert the vrli.lax01.2.chain.pem file to a vrli.lax01.2.chain.crt file.

      {#GUID-A4543466-F221-444A-815E-4FB2975B3E97__codeblock_AEBF0DBD253E4372BCFED4DD78991DDD .pre .codeblock} openssl x509 -in /root/vrli.lax01.2.chain.pem -inform PEM -out /root/vrli.lax01.2.chain.crt

    7. Import the vrli.lax01.2.chain.crt in the Java keystore of the vRealize Log Insight node:

      ``` {#GUID-A4543466-F221-444A-815E-4FB2975B3E97__codeblock_35C96E187FDE4AAABC991CBDBB5549C1 .pre .codeblock} cd /usr/java/default/lib/security/

      ../../bin/keytool -import -alias loginsight -file /root/vrli.lax01.2.chain.crt -keystore cacerts ```

    8. When prompted for a keystore password, type changeit

    9. When prompted to accept the certificate, type yes
    10. Repeat this operation on all vRealize Log Insight nodes in Region A and restart them.

  3. Log in to the vRealize Log Insight user interface.

    1. Open a Web browser and go to https://vrli-cluster-01.sfo01.rainpole.local.
    2. Log in using the following credentials. |Setting|Value| |:------|:----| |User name|admin| |Password|vrli_admin_password|

  4. In the vRealize Log Insight user interface, click the configuration drop-down menu icon and select Administration.

  5. Under Management, click Event Forwarding.
  6. On the Event Forwarding page, select SFO01 to LAX01 and select the Edit icon.
  7. In the Edit Destination dialog box, click Test to verify that the connection settings are correct.
  8. Click Save to save the forwarding new destination.

Parent topic: Replace Certificates of the Operations Management Components in Region B

results matching ""

    No results matching ""