Generating a cert for vcenter7

calendar Jan 14, 2021 · 1 min read · vcenter vmware  ·
Share on: linkedin copy

  1. Gnerate CSR

    https://vcenter7.ellin.net/ui/app/admin/certificates

  2. Sign the CSR

    openssl x509 -req -in vcenter7.ellin.net.csr -CA rootCA.pem -CAkey rootCA-key.pem -CAcreateserial -out vcenter.crt -sha256 -extfile v3.ext -days 365

    Set the desired number of days.

  3. put the following in v3.ext

1    authorityKeyIdentifier=keyid,issuer
2    basicConstraints=CA:FALSE
3    keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
4    subjectAltName = @alt_names
5
6    [alt_names]
7    DNS.1 = vcenter7.ellin.net
8    DNS.2 = vcenter7
9    DNS.3 = 192.168.1.72
comments powered by Disqus