Solved

vmware cert

Posted on 2016-09-13
9
49 Views
Last Modified: 2016-10-07
If we already have a wildcard cert *.domain.local or * domain.com

How do you place this in vmware so it uses correctly.
0
Comment
Question by:Indyrb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
9 Comments
 
LVL 37

Assisted Solution

by:Mahesh
Mahesh earned 350 total points (awarded by participants)
ID: 41797328
I don't think that certificate you can use because after domain joining process, ESX would not change its hostname to hostname.domain.com like windows machines

you need to generate new cert with esxi hostname from CA  and need to install it on esx
0
 
LVL 37

Assisted Solution

by:Jian An Lim
Jian An Lim earned 150 total points (awarded by participants)
ID: 41798972
0
 

Author Comment

by:Indyrb
ID: 41799983
So if esxi has domain suffix = domain.com
but its also in somedomain.local

Can you give the proper steps on getting the cert on the esxi server.
And has anyone tried the wildcard cert?
0
2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

 

Author Comment

by:Indyrb
ID: 41800173
Further more if adding ESXi to an Active Directory domain somedomain.local  and it has the suffix of domain.com, how will that work.
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 350 total points (awarded by participants)
ID: 41800181
Ok you can follow steps in below article if you are running with esxi 5.1 or 5.5
https://kb.vmware.com/selfservice/search.do?cmd=displayKC&docType=kc&docTypeID=DT_KB_1_1&externalId=2034833

If you are running esxi 5.0, follow steps in below article
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2015421
If you already have SSL certificate like host.domain.com or host.domain.local on windows server or you can simply generate one SSL cert on windows server from AD integrated CA and then you can export it in .pfx format and then follow steps from 4 to 19 in above article

You mat try wildcard certificate, its not officially supported, i have not tried it

Mahesh.
0
 
LVL 37

Assisted Solution

by:Mahesh
Mahesh earned 350 total points (awarded by participants)
ID: 41800195
in order to certificate work with names like host.domain.com or host.domain.local you have to have host(a) record in dns in respective zones pointing to esx server IP address

The system from where you connect to esx will look what fqdn you are using to connect esx box is matching to certiifcate or not, thats all
0
 

Author Comment

by:Indyrb
ID: 41800416
what about esxi version 6+
0
 
LVL 37

Expert Comment

by:Jian An Lim
ID: 41833330
VMware do not support wildcard certificate.
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Wannacry 44 106
Powershell script to list number of users in an OU 6 28
PSOD when using passthrough NICs on VMware 6.5 2 54
Linksys EA8500 3 19
Ransomware continues to grow in reach and sophistication, putting data everywhere at risk. Learn how to avoid being caught in its sinister clutches with these 11 key tips.
Do you know what to look for when considering cloud computing? Should you hire someone or try to do it yourself? I'll be covering these questions and looking at the best options for you and your business.
In this video tutorial I show you the main steps to install and configure  a VMware ESXi6.0 server. The video has my comments as text on the screen and you can pause anytime when needed. Hope this will be helpful. Verify that your hardware and BIO…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question