HomeLab Environment SSL Certification Deployment
VMware HyperVisor / ESXi
I have a ESXi 6.7 on my Cisco C220 M3 for my HomeLab. Unfortunately, most of my services are exposed to CERNET-2 and local LAN (my school). So it's necessary to confirm it works under protection.
Request A Certification for Yourself
At here, I chose TrustAsia to be my SSL-Cert provider. (You can help yourself to use another one). This procedure is basicly submitting an ideal domain for your ESXi managment interface and fill up DNS validation (If you use DNSPod by Tencent, it will automaticlly do that for you).
Now you have your own certification.
Deploy It to Your ESXi Instance
Upload Certifications
Enable SSH services on ESXi interface.
At: Host -> Actions -> Services -> Enable Secure Shell (SSH)
Now you have grant access to your ESXi. Login credentials are same as UI one.
The Default SSL certs in /etc/vmware/ssl
are named
rui.crt
and rui.key
. Make backups and delete
them. Rename your previously downloaded cert files to these and upload
to remote directory.
Restrat the Services
/etc/init.d/hostd restart
/etc/init.d/vpxa restart
Host OS restart is not needed.