Table of Contents
Advertisement
Request and Install a Custom SSL Certificate
CapacityIQ installs a self-signed SSL certificate on the virtual appliance. The self-signed certificate generates
security warnings. If you do not want to use the self-signed security certificate, you can install a custom SSL
certificate for CapacityIQ at the command line. This task is optional and does not affect CapacityIQ capabilities.
If you are familiar with SSL certificate handling, you can use other methods.
Procedure
1
Log in as the ciqadmin user to the CapacityIQ appliance by using an SSH client such as PuTTY.
2
Open a command-line prompt.
3
Enter the
ciq-admin
Use the following syntax.
ciq-admin ssl genkey
--org-unit
organizationUnit
city name --state state/province name --country two-letter country code
--city
[--use IP] [--validity
The certificate signing request (CSR) appears on your screen.
N
Type your entries with care. You cannot regenerate the CSR without restarting the process.
OTE
4
(Optional) If you must start over, include the --force flag to regenerate the CSR.
ciq-admin ssl genkey --force
--org unit ...
5
Copy the CSR and send it to a certifying authority to obtain your SSL certificate.
The certificate must be in X509 or .PK7 format.
6
When you have the authorized certificate, use a file-copying tool to upload the certificate file to the virtual
appliance.
This step must be completed correctly. If it is not, you might not be able to install the certificate.
7
Use the install --cert option of the
ciq-admin ssl install --cert
8
Confirm the certificate details.
The certificate details appear in the SSL certificate information area of the HTTPS tab in the Administration
Portal.
The custom certificate replaces the default self-signed certificate that CapacityIQ installed. Installing the
custom certificate restarts CapacityIQ and the ciqadmin processes.
On the Setup tab in the Administration Portal, CapacityIQ updates the HTTPS certificate information with the
new certificate name and certificate expiration date.
What to do next
Grant access to CapacityIQ.
VMware, Inc.
command to create the certificate request.
--org-name
certificate validity in days ]
certificate validity in days ]
ciq-admin
filename
Chapter 2 Installing the CapacityIQ Virtual Appliance
organizationName
command to install the certificate.
19
Advertisement
Table of Contents
Related Manuals for VMware VCENTER CAPACITYIQ 1.5
Related Products for VMware VCENTER CAPACITYIQ 1.5
- VMWARE VCENTER CONFIGURATION MANAGER 5.3 - SOFTWARE CONTENT REPOSITORY TOOL GUIDE
- VMWARE VCENTER CONFIGURATION MANAGER 5.3 - VCENTER DISCOVERED MACHINES IMPORT TOOL GUIDE
- VMWARE VCENTER CONFIGURATION MANAGER 5.3 - SOFTWARE REQUIEREMENTS GUIDE
- VMWARE VCM 5.3 - CONFIGURATION MANAGER SECURITY ENVIRONMENT REQUIREMENTS
- VMWARE VCM 5.3 - RECOVERY GUIDE
- VMware VC-SRM4-A - vCenter Site Recovery Manager
- VMware VC-VLM4-C - vCenter Lab Manager
- VMWARE VCENTER SERVER 4.0 - UPGRADE GUIDE UPDATE 1