April 17, 2014

XenDesktop import vCenter cerfiticate Where is 'Local Computer' ?

I ran into an interesting issue recently with a customer when importing the default vCenter cerfiticate to my XenDesktop Brokers: I couldn't. Typically it's a pretty straightforward process and is detailed pretty well in the eDocs. Navigate in your browser to the FQDN of the vCenter server, choose to install the certificate, and place it in the Trusted People-Local Computer certificate store. No matter what i did (log in with administrator, run IE as an administrator, use the MMC as an administrator, disable UAC both by moving the slider down or via the registry, I could not get Trusted People - Local Computer to show up as the location to put the certificate. I needed another plan.

The system I was working on was Windows 2012 R2 and XenDesktop 7.5 Enterprise

Time for another option to resolve this issue.

1. On the vCenter server, navigate to C:\ProgramData\VMware\VMware VirtualCenter\SSL\

2. Copy the cacert.pem file to your XD Broker server

3. Open the MMC on the XD Broker server as an administrator and add the Certificates snap-in, choosing to manage the Local Computer

4. Browse to "Trusted Root Certification Authorities" and select Import

5. Import the file cacert.pem

6. Open the browser on the Broker server and go to the FQDN of the vCenter server. You should not receive a certificate warning.

No comments:

Post a Comment