Your Browser is Out of Date

Nytro.ai uses technology that works best in other browsers.
For a full experience use one of the browsers below
Planning Guide—VMware Cloud Foundation 4.x on VxRail
Executive summary VMware Cloud Foundation on VxRail VMware Cloud Foundation on VxRail Requirements and Use Cases VMware Cloud Foundation on VxRail Workload Domain Planning Data Center and Network Requirements Cloud Foundation on VxRail High-Level Design Decisions Cloud Foundation on VxRail Workload Planning Cloud Foundation on VxRail Licensing Planning Cloud Foundation on VxRail Physical Network Planning Cloud Foundation on VxRail Physical Network Preparation VxRail Cluster Deployment Preparation Prepare for VMware Cloud Foundation Management VI Workload Domain Prepare for Cloud Foundation VI Workload Domain Prepare for NSX-T Edge Gateway Services Prepare for Cloud Foundation Application Virtual Network Cloud Foundation On VxRail Housekeeping Tasks
Introduction
Configure backups for SDDC Manager and NSX-T Manager
Enable access to Dell and VMware online depots
Password management
Certificate management
Enable Active Directory authentication
Appendixes

Certificate management

Certificate management

  • After the Cloud Foundation on VxRail deployment, you can perform certificate management from SDDC Manager. It is considered best practice to replace all of the self-signed certificates after completing the VMware Cloud Foundation management domain deployment. Certificate management is supported for:

    • vCenter Server
    • NSX Manager
    • SDDC Manager
    • vRealize Suite Lifecycle Manager

    SDDC Manager supports integrating a certificate authority into the Cloud Foundation on VxRail instance. With this level of integration, a signed certificate for a management component can be requested, and a certificate can be auto-generated for that component from the integrated certificate authority.

    DiagramDescription automatically generated

    Figure 69.    Certificate Authority integrated with Cloud Foundation on VxRail

    If you do not want to integrate a certificate authority with the Cloud Foundation on VxRail instance, you can upload certificates from another external certificate authority. To integrate a certificate authority with Cloud Foundation on VxRail, the following information is needed for either a Microsoft or OpenSSL certificate authority:

    • The URL of certificate authority server
    • Credentials for the certificate authority
    • Template Name