VMware Horizon 7.12 JMP Replace SSL Certificate and Import Horizon Certificate

Geplaatst op door
Post Views: 105
Print Friendly, PDF & Email

SSL Certificate with a private Key

OpenSSL, Convert PFX to .key and .crt

Before copy the certificate we need to convert the .PFX into a .Crt and .Key file.
I used the following openssl command;

  • openssl pkcs12 -in star_domain_nl.pfx -clcerts -nokeys -out star_domain_nl.crt
  • openssl pkcs12 -in star_domain_nl.pfx -out start_domain_nl.key -nodes

Edit the NGINX config file on the JMP server

  • Before editing the NGINX config file, copy/paste the .Crt and .Key file created on your linux machine previous step to the folder “C:\Program Files (x86)\VMware\JMP\com\XMS\nginx\conf”
  • Stop the “JMP” services in the following order
  • VMware JMP API Service
  • VMware JMP File Share Service
  • VMware JMP Platform Services
  • Open the “nginx.conf” file in the folder C:\Program Files (x86)\VMware\JMP\com\XMS\nginx\conf
  • Search for the following “ssl_certificate”
  • Edit the property “SSL_Certificate” and “ssl_certificate_key” changed it to the new certificate name.
  • ssl_certificate ;         start_domain_nl.crt;
  • ssl_certificate_key;  start_domain_nl.key;
  • restart the services.

Edit the NGINX config file on the App Volumes server

  • Before editing the NGINX config file, copy/paste the .Crt and .Key file created on your linux machine previous step to the folder “C:\Program Files (x86)\CloudVolumes\Manager\nginx\conf”
  • Stop the “JMP” services in the following order
  • App Volumes PowerShell Remoting
  • App Volumes Manager
  • Open the “nginx.conf” file in the folder C:\Program Files (x86)\ CloudVolumes\Manager \nginx\conf
  • Search for the following “ssl_certificate”
  • Edit the property “SSL_Certificate” and “ssl_certificate_key” changed it to the new certificate name.
  • ssl_certificate ;         start_domain_nl.crt;
  • ssl_certificate_key;  start_domain_nl.key;
  • restart the services.

Add the JMP server in the Horizon Console “horizon certificate is missing”

While adding the JMP server, i received as aspect the following error “This Horizon certificate is missing on the JMP server”

Check your JMP server on https.
Check your App Volumes server on https

  • Export the Horizon certificate from one of the connection brokers or grab the certificate from your backup/file location.
  • Use openssl for converting the .PFX file to a .pem file
    “openssl pkcs12 -in start_domain_nl.pfx -out horizon.cert.pem -nodes”
  • Copy the Horizon.cert.pem file to the following folder on the server “C:\Program Files (x86)\VMware\JMP\com”

Make the connection again.

Add the App Volumes  server in the Horizon Console “horizon certificate is missing”

While adding the JMP server, i received as aspect the following error “This Horizon certificate is missing on the JMP server”

  • Export the App Volumes  certificate from one of the connection brokers or grab the certificate from your backup/file location.
  • Use openssl for converting the .PFX file to a .pem file
    “openssl pkcs12 -in start_domain_nl.pfx -out horizon.cert.pem -nodes”
  • Copy the av.cert.pem file to the following folder on the server “C:\Program Files (x86)\VMware\JMP\com”

Make the connection again