3.0.1

Table Of Contents

View Manager Administration Guide

78 VMware, Inc.

To create a self-signed SSL certificate

1Fromacommandprompt,enterthefollowing:

keytool -genkey -keyalg "RSA" -keystore keys.p12 -storetype pkcs12

-validity 360

2Youarepromptedtoenterapasswordforthekeystoreandthentoprovide

informationaboutyourselfandyourorganization.Whenyouareaskedtoenter

yourfirstandlastname,entertheFQDNoftheViewConnectionServerinstance

youwanttosec

ure.

3Enteryourdepartment,organization,location,state,andcountry.Thelattermust

beintheformofatwo‐lettercountrycode.

4Youareshownasummaryofthedatayouhaveenteredandareaskedifyouwant

toproceed.Enteryesifyouaresatisfiedthatthedetailsarecorrect.

ouarepromptedforakeypassword,whichisthepasswordspecificallyforthis

certificate(asopposedtoanyothercertificatesstoredinthesamekeystorefile).

Thekeys.p12fileiscreatedinthecurrentdirectory.

Itisadvisabletobackupthekeys.p12fileafterthecertificateisimportedin

toitincase

youneedtorebuildtheconfigurationfortheserveratsomepoint.

Validating the SSL Certificate

Self‐signedcertificates,whileadequatefordataencryptionbetweenserverandclient,

donotprovideanyreliableinformationaboutthelocationofViewConnectionServer

orthecorporateentityresponsibleforitsadministration.

Whereitisimportantforyourclientstobeabletodeterminetheoriginandintegrityof

thedatatheyreceiv

e,itisrecommendedthatyouobtainaCA‐authenticatedcertificate

foryoursite.

To create a certificate signing request (CSR)

Fromacommandprompt,enterthefollowingwhere<secret>isthekeystore

password:

keytool -certreq -keyalg "RSA" -file certificate.csr -keystore

keys.p12 -storetype pkcs12 -storepass <secret>