HomeLab SSL Deployment

HomeLab Environment SSL Certification Deployment

VMware HyperVisor / ESXi

I have a ESXi 6.7 on my Cisco C220 M3 for my HomeLab. Unfortunately, most of my services are exposed to CERNET-2 and local LAN (my school). So it's necessary to confirm it works under protection.

Request A Certification for Yourself

At here, I chose TrustAsia to be my SSL-Cert provider. (You can help yourself to use another one). This procedure is basicly submitting an ideal domain for your ESXi managment interface and fill up DNS validation (If you use DNSPod by Tencent, it will automaticlly do that for you).

Now you have your own certification.

Deploy It to Your ESXi Instance

Upload Certifications

Enable SSH services on ESXi interface.

At: Host -> Actions -> Services -> Enable Secure Shell (SSH)

Now you have grant access to your ESXi. Login credentials are same as UI one.

The Default SSL certs in /etc/vmware/ssl are named rui.crt and rui.key. Make backups and delete them. Rename your previously downloaded cert files to these and upload to remote directory.

Restrat the Services

/etc/init.d/hostd restart
/etc/init.d/vpxa restart

Host OS restart is not needed.

文章作者: sfc9982
版权声明: 本博客所有文章除特別声明外,均采用 CC BY-NC-ND 4.0 许可协议。转载请注明来源 sfc9982 !