PowerVCF - Introduction to Certificate Management with VMware Cloud Foundation
In this blog series I’m going to explore the capabilities provided in VMware Cloud Foundation that allow you to perform certificate management across components managed by SDDC Manager.
The capability to manage certificates was introduced a number of releases ago but with the release of version 3.9 the ability to perform these same operations were exposed via a number Public APs and now with the introduction of PowerVCF (see Introducing PowerVCF - Power to VI Admins ) these operations can now be scripted using PowerShell.
This series of blogs will look at the end to end process that you follow to take a freshly installed VMware Cloud Foundation platform (Management Domain) and replace the components with signed certificates from a Microsoft Certificate Authority, this process is valid for other components deployed but for simplicity I’m going to focus on the Management Domain only. From a high-level the process is as follows:
- Configure the Microsoft Certificate Authority for VMware Cloud Foundation Integration (Part 1)
- Connect SDDC Manager to the Microsoft Certificate Authority (Part 2)
- Generate Certificate Signing Request (CSR) Files for Each Component Managed by SDDC Manager (Part 3)
- Request Signed Certificates from Microsoft Certificate Authority (Part 4)
- Install Signed Certificates on Each Component Managed by SDDC Manager (Part 5)
Each post in the series will focus on one of the specific steps from the above list and will provide the steps as it pertains to both the SDDC Manager User Interface and then the corresponding process using the PowerVCF cmdlets.
Useful Links
If you would like to learn more about VMware Cloud Foundation or PowerVCF, check out these links: