• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2036
  • Last Modified:

GoDaddys SSL invalid on Security Server 5.1

Hello

We have for 2 months ago or something upgrades our VMware solution 5.0 to 5.1. Never should have done that.

After that – we cannot be able to get our Security server up and running with SSL (Certificate from GoDaddy)

In our environment we have: 1 Connection Server (Green light in the VMWare View Administrator Dashboard), 1 Event database (green), 1 View Composer Server (Green), 1 Transfer server (Green) and 1 vCenter server (Green) And we have 1 Security server RED

When I click on the server under Security servers I get the details up.


 Name: Server02
 Version: 5.1.0-704644
 Status
 IPSec Status: Not in use
 SSL Certificate: Invalid
 

I have downloaded the certificate from GoDaddy – named view.domain.com.cert and the gd_iis_intermediates.p7b (IIS 7 version, Tomcat, Other +++)

No matter what I have done – it turns up red and the users cannot use https://view.domain.com 

There is a lot of articles out there on this issue - but I have not found any solution. VMware did some changes on the certificate from 5.0 to 5.1 :( so the certificate that we had (was self sign) did not work after this.
 
Derek Seaman has a blog http://derek858.blogspot.no/2012/05/vmware-view-51-installation-part-1-view.html But no luck here.... :(

The users must first connect with VPN – then use the View client to connect to the Connection Server and local name of that server.

What can I do?
0
narna4ever
Asked:
narna4ever
  • 2
  • 2
1 Solution
 
arnoldCommented:
The commn issues is to check whether all the intermediate certificates that you have are valid.
Unless someone has gone through the same difficulty aas you, the only options are to suggest you check where the certificate chain might be broken.

Check out godaddy's ssl to make sure you have their current chain/certificates.
It might be that the certificate from godaddy that is ncludes in the VMware upgrade/version includes one that does not match the one used to sign your certificate.
0
 
btanExec ConsultantCommented:
Since it is self sign cert, beside prompting if there is not trusted GoDaddy cert installed, this should be transparently handled as SSL exchange. I saw this forum and mentioned a couple of pointers to note such as importing the pfx, ensuring the path of the External URL (not the internal website URL assuming there is some proxy) of the view security server is the one in the SSL certificate

http://communities.vmware.com/message/2051370
0
 
arnoldCommented:
Even a self-signed cert has the need to import the CA's certificate.
0
 
narna4everAuthor Commented:
Found an answer here

http://my-virt.alfadir.net/2012/05/generate-view-5-1-certificat/

Worked like a sharmed :)
0
 
narna4everAuthor Commented:
Needed to rekey my certificate within GoDaddy - after that I follow the guide - and everything worked.
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now