PositiveSSL and VMware vCenter (Version 8+)

VMware vCenter (version 8+) does not accept SSL certificates with SHA-1 root. PositiveSSL certificates are delivered with two certificate paths, a legacy path using a SHA-1 based root certificate, as well as a new one using a SHA-384 root certificate.

1. Import "USERTrust RSA Certification Authority" SHA2 root certificate into the Trustet Root Store. vCenter typically only shows self-signed or previously imported root certificates there.

2. Install your certificate including the SectigoRSADomainValidationSecureServerCA intermediate certificate instead of the CABundle. You can find SectigoRSADomainValidationSecureServerCA inside the InterSSL download of your SSL certificate.

Alternatively, we can offer you to switch the product to RapidSSL, where you will only receive a certificate path with SHA-256 root certificate.


Was this answer helpful?

 Print this Article

Also Read

Windows/IIS/MMC: What do to with "Error HRESULT: 0x80070520"?

In very rare cases this error might show up during installation on Windows Server. The cryptic...

An error has occured: [2011296] CSR is invalid

This error messgae is typically shown when the field "COMMON NAME" inside the CSR doesn't have a...

'Broken Certificate Chain' error message

The SSL certificate chain typically consists of:ROOT Certificate INTERMEDIATE Certificate...

Can i redirect non-SNI capable web browsers to an alternative site?

YES, it's possible to redirect non-SNI capable browsers (Internet Explorer auf Windows XP). -...

ASN1 bad tag value met. 0x8009310b

Question: I get CertEnroll::Cx509Enrollment::p_InstallResponse: ASN1 bad tag value met....

Powered by WHMCompleteSolution