GoDaddys SSL invalid on Security Server 5.1

Posted on 2012-09-03
Last Modified: 2012-10-13

We have for 2 months ago or something upgrades our VMware solution 5.0 to 5.1. Never should have done that.

After that – we cannot be able to get our Security server up and running with SSL (Certificate from GoDaddy)

In our environment we have: 1 Connection Server (Green light in the VMWare View Administrator Dashboard), 1 Event database (green), 1 View Composer Server (Green), 1 Transfer server (Green) and 1 vCenter server (Green) And we have 1 Security server RED

When I click on the server under Security servers I get the details up.

 Name: Server02
 Version: 5.1.0-704644
 IPSec Status: Not in use
 SSL Certificate: Invalid

I have downloaded the certificate from GoDaddy – named and the gd_iis_intermediates.p7b (IIS 7 version, Tomcat, Other +++)

No matter what I have done – it turns up red and the users cannot use

There is a lot of articles out there on this issue - but I have not found any solution. VMware did some changes on the certificate from 5.0 to 5.1 :( so the certificate that we had (was self sign) did not work after this.
Derek Seaman has a blog But no luck here.... :(

The users must first connect with VPN – then use the View client to connect to the Connection Server and local name of that server.

What can I do?
Question by:narna4ever
    LVL 76

    Expert Comment

    The commn issues is to check whether all the intermediate certificates that you have are valid.
    Unless someone has gone through the same difficulty aas you, the only options are to suggest you check where the certificate chain might be broken.

    Check out godaddy's ssl to make sure you have their current chain/certificates.
    It might be that the certificate from godaddy that is ncludes in the VMware upgrade/version includes one that does not match the one used to sign your certificate.
    LVL 60

    Expert Comment

    Since it is self sign cert, beside prompting if there is not trusted GoDaddy cert installed, this should be transparently handled as SSL exchange. I saw this forum and mentioned a couple of pointers to note such as importing the pfx, ensuring the path of the External URL (not the internal website URL assuming there is some proxy) of the view security server is the one in the SSL certificate
    LVL 76

    Expert Comment

    Even a self-signed cert has the need to import the CA's certificate.

    Accepted Solution

    Found an answer here

    Worked like a sharmed :)

    Author Closing Comment

    Needed to rekey my certificate within GoDaddy - after that I follow the guide - and everything worked.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    There are many reasons malware will stay around and continue to grow as a business.  The biggest reason is the expanding customer base.  More than 40% of people who are infected with ransomware, pay the ransom.  That makes ransomware a multi-million…
    Create your own, high-performance VM backup appliance by installing NAKIVO Backup & Replication directly onto a Synology NAS!
    Teach the user how to install vSphere Update Manager  Console to Windows system:  Install vSphere Update Manager: Configure vSphere Update Manager plug-in in vSphere Client: Verify vSphere Update Manager settings in vSphere Client:
    This video shows you how to use a vSphere client to connect to your ESX host as the root user. Demonstrates the basic connection of bypassing certification set up. Demonstrates how to access the traditional view to begin managing your virtual mac…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    9 Experts available now in Live!

    Get 1:1 Help Now