HOWTO: Generate Self-Signed Certificates in VMware NSX

This post is a number of posts that make up a VCAP6-NV Study guide.

In this post we will look at how to generate a Self Signed SSL Certificate on an existing VMware NSX Edge Service Gateway (ESG) or NSX Edge.  Once generated, the SSL certificate could be used for SSL VPN or Load Balancing.

Prerequisites

  • A working deployment of VMware NSX.
  • A deployed NSX Edge Services Gateway

Generate Self Signed SSL Certificate

Note: These steps assume you are not even logged into vCenter Server.  Skip the first few steps if you are!

Using your favourite web browser, navigate to the vCenter Server login page (https://vcenter.fqdn).

Enter appropriate User name and Password and click Login.

Click Network and Security.

Click NSX Edges.

Double-click on the target NSX Edge.

Click Manage > Settings.

Click Certificates.

Generate the Certificate Signing Request (CSR)

Click Actions.

Click Generate CSR.

Enter the CSR information.

Click OK.

Generate a Self-Signed Certificate

Select Actions.

Click Self-Sign Certificate.

Enter the Number of days to sign the certificate for.

Click OK.

 

And thats all there is to it!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.