vmware cert

Indyrb
Indyrb used Ask the Experts™
on
If we already have a wildcard cert *.domain.local or * domain.com

How do you place this in vmware so it uses correctly.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
MaheshArchitect
Distinguished Expert 2018
Commented:
I don't think that certificate you can use because after domain joining process, ESX would not change its hostname to hostname.domain.com like windows machines

you need to generate new cert with esxi hostname from CA  and need to install it on esx
Jian An LimSolutions Architect
Top Expert 2016
Commented:

Author

Commented:
So if esxi has domain suffix = domain.com
but its also in somedomain.local

Can you give the proper steps on getting the cert on the esxi server.
And has anyone tried the wildcard cert?
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
Further more if adding ESXi to an Active Directory domain somedomain.local  and it has the suffix of domain.com, how will that work.
Architect
Distinguished Expert 2018
Commented:
Ok you can follow steps in below article if you are running with esxi 5.1 or 5.5
https://kb.vmware.com/selfservice/search.do?cmd=displayKC&docType=kc&docTypeID=DT_KB_1_1&externalId=2034833

If you are running esxi 5.0, follow steps in below article
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2015421
If you already have SSL certificate like host.domain.com or host.domain.local on windows server or you can simply generate one SSL cert on windows server from AD integrated CA and then you can export it in .pfx format and then follow steps from 4 to 19 in above article

You mat try wildcard certificate, its not officially supported, i have not tried it

Mahesh.
MaheshArchitect
Distinguished Expert 2018
Commented:
in order to certificate work with names like host.domain.com or host.domain.local you have to have host(a) record in dns in respective zones pointing to esx server IP address

The system from where you connect to esx will look what fqdn you are using to connect esx box is matching to certiifcate or not, thats all

Author

Commented:
what about esxi version 6+
Jian An LimSolutions Architect
Top Expert 2016

Commented:
VMware do not support wildcard certificate.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial