Part 3A - Creating the Microsoft CA Template for SSL certificates in vSphere 6.0

Active Directory Certificate Authority Certificates Microsoft

Published on 24 March 2016 by Christopher Lewis. Words: 329. Reading Time: 2 mins.

This is Part 3A of a series of posts on how to configure VMware vSphere 6.x to use Certificates from Microsoft Windows Server Certificate Services.

The following assumes you have completed the steps within the series:

The high level steps below are taken from the VMware KB Article Creating a Microsoft Certificate Authority Template for SSL certificate creation in vSphere 6.0

Instructions

Open the Certificate Template Console by running certtmpl.msc

From within the Certificate Template Console, locate the Web Server template, right click and select Duplicate Template.

At the Properties of New Template window, select the Compatibility Tab and set the appropriate Compatibility Settings or leave as default.

Note: for anything better than SHA1, you will need to select a minimum of Windows Server 2008

At the Properties of New Template window, select the General Tab and set the Template Display Name to VMware vSphere 6 and (if appropriate) update Validity period (default is 2 years).

At the Properties of New Template window, select the **Extensions **Tab and select Application Policies and click Edit.

At the Edit Application Policies Extension dialog, select Server Authentication, click Remove and then click OK.

At the Properties of New Template window, select the Extensions Tab and select Key Usage and click Edit.

At the Edit Key Usage Extension dialog, check the Signature is proof of origin (nonrepudiation) checkbox.

Leave all other settings as default and Click OK

At the Properties of New Template window, select the Subject Name Tab and confirm the Supply in the request option is selected and click OK.

The newly created VMware vSphere 6 Certificate Template should appear in the list within the Certificate Template Console.

Next Steps

Now we have created the CA Template for vSphere SSL Certificates, let us move on to part Part 3B - Creating the Microsoft CA Template for Subordinate CA certificates in vSphere 6.0

Published on 24 March 2016 by Christopher Lewis. Words: 329. Reading Time: 2 mins.

Blog Categories: Microsoft Windows Active Directory Certificate Authority

Recent Posts:

Tweets by thecloudxpert

Blog Categories:

active directory 6 aria automation 8 aria operations 2 aws 2 blog 1 career 1 certificate authority 5 certificates 1 certification 91 cloud management 1 cloudnativecon 1 community 1 fun 1 general 9 hands on labs 1 home lab 2 kubecon 1 kubernetes 1 microsoft 7 nsx 45 nsx v 41 powercli 8 powershell 6 professional 1 reviews 1 vcap 48 vcap6 2 vcenter server 4 vcix 2 vexpert 9 vmug 5 vmware 99+ vmware aria 1 vmware aria automation 8 vmware aria operations 3 vmware cloud 3 vmware cloud director 1 vmware explore 2 vmware identity manager 2 vmworld 36 vrealize automation 79 vrealize automation saltstack config 1 vrealize business 2 vrealize log insight 1 vrealize operations 1 vrealize operations manager 5 vrealize orchestrator 11 vrealize suite 14 vrealize suite lifecycle manager 20 vsan 5 vsphere 9 windows 6

Top Tags:

active directory 6 api 18 barcelona 24 certificates 15 certification 7 howto 42 microsoft 7 multi tenancy 9 nsx v 43 platform services controller 8 powercli 8 powershell 7 psc 6 vcap 8 vcap6 45 vcap6 cma 47 vcap6 nv 37 vcix6 nv 36 vexpert 19 vmug 8 vmware 99+ vmware aria 9 vmware aria automation 8 vmworld 35 vmworld 2016 13 vmworld 2017 9 vra 13 vrealize 7 vrealize automation 74 vrealize operations 8 vrealize orchestrator 20 vrealize suite lifecycle manager 11 vrslcm 20 vsan 7 vsphere 12