Create New SSL Certificates and Keys for Each Server
If you do not want to use the same SSL certificate and key for each ACE Management
Server, you must create new SSL certificates and keys for each server.
If you plan to obtain SSL certificates from a certificate authority, you must create
certificate chains. Figure
included in a chain.
Figure 5-2. Creating the Certificate Chain File
certificate
verification
chain
Intermediary SSL Certificate
Server SSL
Certificates
ACE Management Server #1
SSL Certificate
To create new SSL certificates and keys for each server
1
Create as many SSL certificate and key pairs as you need (one for each server in
your server farm).
The procedure varies, depending on the tools you use. To determine how to create
these certificates and keys, see the documentation for your platform. Each
certificate must have a unique common name and a unique serial number.
VMware, Inc.
Chapter 5 Load-Balancing Multiple ACE Management Server Instances
5‐2 provides an overview of determining which certificates are
convert to PEM
then append to file
Root SSL Certificate
convert to PEM
then append to file
ACE Management Server #2
SSL Certificate
Certificate Chain File
[Root SSL Certificate in PEM format]
[Intermediary SSL Certificate in PEM format]
[AMS #1 SSL Certificate in PEM format]
[AMS #1 SSL Certificate in PEM format]
convert to PEM
then append to file
convert to PEM
then append to file
55