Hi
I config the view connect server of ssl certificate ,I config the ssl certificate with the kb
but when I configed the ssl certificate,I open the IE ,open the connect server with https.
the certificate show that it is not invalid certificate.how do I do ?
when I use view client connect the connect server , it prompt "the host name in the certificate is invalid or does not match"
My way
1. Add keytool to the system path:
a. In your View Connection Server or Security Server host, right-click My Computer and click Properties.
b. Click the Advanced tab.
c. Click Environment Variables.
d. In the System variables group, select Path and click Edit.
e. Type the path to the JRE directory in the Variable Value text box. For example,
<install_directory>\VMware\VMware View\Server\jre\bin.
2.Open a command prompt and run this command using keytool to generate a Keystore file:
keytool -genkeypair -keyalg "RSA" -keysize 2048 -keystore keys.jks -storepass secret
keytool -certreq -file certificate.csr -keystore keys.jks -storepass secret
3. I asked for the certificate with my CA certsrv in domain.I asked for the advanced certificate and copy the text file
for example
-----BEGIN NEW CERTIFICATE REQUEST-----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-----END NEW CERTIFICATE REQUEST-----
I copyed the text in my ca server to asked for the catificate
4. when the certificate had asked for ,I download the certificate chain and export the CA certificate and the ssl certificate
5.keytool -importcert -keystore viewcs1.jks -storepass password -alias rootca -file rootca.der.cer
6.keytool -importcert -keystore viewcs1.jks -storepass password -keyalg “RSA” -trustcacerts -alias viewcs1 -file viewcs1.der.cer
7.copy the jks and certificate to " \VMware\VMware View\Server\sslgateway\conf "
8.create locked.properties and Set the keyfile property
keyfile=keys.p12
keypass=MY_PASS
storetype=jks
9. restart the connect services
What problem ? I do this .I don't know the step which I do wrong .
pls help me to solve the problem.
thansks very much
This problem is puzzle me long time .
I hope that anyone can provide the video
My email :Aaron.jin@anycloudplus.com
When you created the certificate did you use the same name that people accessing VDI would use? For example if people acecss VDI through https://vdi.blank.com then you would have to create your certificate using the same.
When you created the certificate did you use the same name that people accessing VDI would use? For example if people acecss VDI through https://vdi.blank.com then you would have to create your certificate using the same.
thanks
I use your suggest and I solve the problem
Glad it worked out for you.