PowerProtect Data Manager 19.15 Kubernetes User Guide
Disable vCenter SSL certificate validation
If the vCenter server's SSL certificate cannot be trusted automatically, a dialog box appears when adding the vCenter server as an asset source in the PowerProtect Data Manager user interface, requesting certificate approval. It is highly recommended that you do not disable certificate enforcement.
If disabling of the SSL certificate is required, you can perform the following procedure.
CAUTION:These steps should only be performed if you are very familiar with certificate handling and the issues that can arise from disabling a certificate.
- Create a file named
cbs_vmware_connection.properties in the
/home/admin directory on the
PowerProtect Data Manager server, with the following contents:
cbs.vmware_connection.ignore_vcenter_certificate=true
- If not already created, create an
application.yml file in the
/usr/local/brs/lib/vmdm/config/ directory.
NOTE:The structure of this file requires that you separate fields into individual categories and sub categories, as shown in the following step.
- In the
application.yml file, add the following contents:
vmware_connection: ignore_vcenter_cert: truediscovery: ignore_vcenter_cert: true - Run cbs stop to stop the cbs service, and then cbs start to restart the service.
- Run vmdm stop to stop the vmdm service, and then vmdm start to restart the service.
- If the SSL certificate uses an FQDN, perform a test to determine if SSL certificate disabling was successful by adding a vCenter server using the vCenter server's IP address, and then verify that the asset source was added and virtual machine discovery was successful.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\