Let’s keep with the VMware product SSL certificates replacement serie.
I assume here that you already prepared your PKI. If you did not managed it yet checkย KB2112009.
Today we’ll be talking about NSX certificates.
Installing trusted certificate is quite easy in NSX. The action relies on four steps :
From the NSX Manager administration interface (reachable via http://NSXManager-FQDN with admin account and “default” as password if you did not change it) :
Generate the signed certificate
From your MS PKI web page (https://PKI-FQDN/certsrv) :
At this step you will need to use the Root-CA certificate of your MS PKI.
Before building the SSL chain, verify that the NSX certificate has been correctly created
The new chain should be like that :
Go back to the NSX Manager administration interface :
Thank you guys for reading and as usual, feel free to comment, share and give me support ๐
Posted in Network Virtualization, NSX Tagged with: Certificates, NSX
As I was deploying my first NSX controller cluster, i faced a really annoying issue : The second node deployment was stuck on “Deploying” status.
I had already tried without any improvement to :
Unable to cancel, remove, kill (or whatever you want ๐ ) the task, i decided to browse the NSX API guide.
This post will show you the different steps i followed to remove the task from the task queue and redeploy my second node.
My lab consisted of :
vSphere 5.1 => vCloud director 5.1 => vApp => Nested ESXi 6.0.u1 => vcsa 6.0.u1 (external install) + NSX manager 6.1.4 + NSX controller |
After installing the Firefox REST Client (this post talks about the installation of Firefox RESTClient ):
I was able to confirm the status of the second node
I was then able to redeploy my controller ๐
PS : Notice that if you have to delete the last controller, you will have to force the removal by using the command https://NSXManagerIP/api/2.0/vdn/controller/controller-ID?forceRemoval=True. |
Posted in NSX, Virtualization Tagged with: NSX, SDN, VMware