6.3
Table Of Contents
- VMware vRealize Operations for Horizon Security
- Contents
- VMware vRealize Operations for Horizon Security
- Managing RMI Communication in vRealize Operations for Horizon
- Changing the Default TLS Configuration in vRealize Operations for Horizon
- Managing Authentication in vRealize Operations for Horizon
- Index
5 Upload the certicate signing request to a certicate authority and request a signed certicate.
If the certicate authority requests a password for the certicate private key, use the password
congured for the certicate store.
The certicate authority returns a signed certicate.
6 To import the certicate, copy the certicate le to the View adapter work directory and run the keytool
utility with the –import option.
For example:
keytool –import –alias v4v-adapter –file certificate-filename -keystore v4v-adapter.jks
certicate-lename is the name of the certicate le from the certicate authority.
When the keytool utility is nished, the signed certicate is imported to the adapter certicate store.
7 To start using the new certicate, restart the View adapter on the node where the adapter is running.
Platform Action
Linux
Run the service vmware-vcops restart command.
Windows
Use the Windows Services tool (services.msc) to restart the vRealize
Operations View Adapter service.
What to do next
After you restart the View adapter, you must pair any broker agents that are aached to the View adapter.
See “Certicate Pairing,” on page 21.
Replace the Default Certificate for the Broker Agent
A self-signed certicate is generated when you rst install the broker agent. The broker agent uses this
certicate by default to authenticate to the View adapter. You can replace the self-signed certicate with a
certicate that is signed by a valid certicate authority.
Prerequisites
n
Verify that you can connect to the View Connection Server host where the broker agent is installed.
n
Verify that the keytool utility is added to the system path on the View Connection Server host where
the broker agent is installed.
n
Verify that you have the password for the certicate store. You can obtain this password from the
msgserver.properties le. See “Broker Agent Certicate and Trust Store Files,” on page 17.
n
Become familiar with the Java keytool utility. Documentation is available at hp://docs.oracle.com.
Procedure
1 Log in to the View Connection Server host where the broker agent is installed.
Chapter 4 Managing Authentication in vRealize Operations for Horizon
VMware, Inc. 19