6.5

Table Of Contents

Replacing the Default Certificates 12

By default, the vRealize Operations for Published Applications adapter and the broker agent use self-signed

certicates for authentication and data encryption. For increased security, you can replace the default self-

signed certicates with certicates that are signed by a certicate authority.

This chapter includes the following topics:

“Replace the Default Certicate for the vRealize Operations for Published Applications Adapter,” on

page 59

“Replace the Default Certicate for the Broker Agent,” on page 61

Replace the Default Certificate for the

vRealize Operations for Published Applications Adapter

A self-signed certicate is generated when you rst install the

vRealize Operations for Published Applications adapter. The desktop message server and the broker

message server use this certicate by default to authenticate to the agents. You can replace the self-signed

certicate with a certicate that is signed by a valid certicate authority.

Prerequisites

Verify that you can connect to the node where the vRealize Operations for Published Applications

adapter is running.

Verify that you have the password for certicate store. You can obtain the password from the

msgserver.properties le. See “vRealize Operations for Published Applications Adapter Certicate

and Trust Store Files,” on page 57.

Become familiar with the Java keytool utility. Documentation is available at hp://docs.oracle.com.

Procedure

1 Log in to the node where the vRealize Operations for Published Applications adapter is running.

2 Navigate to the vRealize Operations for Published Applications adapter's work directory.

Platform Directory Location

Linux

/usr/lib/vmware-

vcops/user/plugins/inbound/V4PA_adapter3/work

Windows

C:\vmware\vcenteroperations\user\plugins\inbound\V4PA_adapt

er3\work

VMware, Inc.