Managing NSX Manager Global Certificates (SKKB1040)

In this article, we will look how to create and use VMware NSX Manager Global Certificates. Lab Environment Introduction Use Case Solution Final Step   Update Log: Lab Environment The full lab logical design can be seen HERE. Introduction   In a previous post called Managing NSX Edge and Manager Certificates (SKKB1012) we looked into Read more about Managing NSX Manager Global Certificates (SKKB1040)[…]

vRO Architecture Considerations when Digitally Signing Packages (SKKB1036)

In this blog post we will take a look at how Digitally signing packages in VMware realize Orchestrator (vRO) may affect how you deploy vRO in your environment. Lab Environment Introduction Use Case 1 (Single Digital Signature Issuer) Use Case 2 (Multiple Digital Signature Issuers) Final Step Update Log: Lab Environment The full lab logical Read more about vRO Architecture Considerations when Digitally Signing Packages (SKKB1036)[…]

vRO: Securing Your PowerShell Execution and Password in vRO (SKKB1035)

In this blog post we will take a look at how we can secure your end to end PowerShell Execution from vRO. Including how not to show passwords when using CredSSP in a double-hop authentication scenario. Lab Environment Introduction UseCase 1 (least secure) UseCase 2 UseCase 3 (most secure) Securing the PowerShell Passowrd References Final Read more about vRO: Securing Your PowerShell Execution and Password in vRO (SKKB1035)[…]

How to Configure vRO to use SSL Connection to a SQL Server Database (SKKB1031)

In this article we will show how to configure VMware vRealize Orchestrator (vRO) to use an SSL connection when communicating with a Microsoft SQL Server database. Introduction Lab Environment Enabling SSL on the SQL Server Trusting the SSL Certificate Chain on the vRO Enabling SSL for the vRO Databse Connection Final Step   Lab Environment Read more about How to Configure vRO to use SSL Connection to a SQL Server Database (SKKB1031)[…]

How to Change the Package Signing Certificate of a vRO Appliance (SKKB1029)

In this post we will take a look how we can change the Package Signing Certificate (PSC) in vRealize Orchestrator (vRO) appliance. Lab Environment Overview Changing the Package Signing Certificate Importing Digitally Signed Packages to a Different Destination vRO Server Backing up your PSC certificate and Private Key Final Step Update Log: 12/02/2016 – Added Read more about How to Change the Package Signing Certificate of a vRO Appliance (SKKB1029)[…]

Orchestrator Certificates Explained (SKKB1022)

Introduction Lab Environment Orchestrator Communication Overview Orchestrator Certificates: Purpose and Characteristics Certificate for HTTPS 5480 Certificate for HTTPS 8281 & 8283 Certificate for Package Signing Managing the Orchestrator Certificates Certificate Keys and Stores Orchestrator Server Java KeyStore (jssacacerts) Overview of SSL Communication, Keys, and Stores Orchestrator Certificates: Purpose and Characteristics Use Case 1 (VAMI 5480) Read more about Orchestrator Certificates Explained (SKKB1022)[…]

How to Change the SSL Certificate of a vRO Appliance (7.x) (SKKB1021)

In this post we will take a look into the SSL certificate replacement process for vRealize Orchestrator (vRO) 7.x appliance Lab Environment Current VMware Certificate Restrictions Scenario 1: Use vCO Dunes Private Key Generate Certificate Request and Issue Certificate Import the Ccertificate Import a PEM into the vRO SSL store Import a CRT into the Read more about How to Change the SSL Certificate of a vRO Appliance (7.x) (SKKB1021)[…]

vCO Workflow to automate the certificate generation process (SKKB1003)

Introduction Lab Environment Getting to know the main workflow Use Case 1: Create certificate request file Use Case 2: Convert existing certificate to PEM Use Case 3: Using the “Generate Certificate” WF to automate the end-to-end process Introduction In this post we will take a look into a workflow that can help the automation of Read more about vCO Workflow to automate the certificate generation process (SKKB1003)[…]