Which three options are available for replacing vCenter Server Security Certificates?

Which three options are available for replacing vCenter Server Security Certificates? (Choose three.)

Which three options are available for replacing vCenter Server Security Certificates? (Choose three.)

A.
Replace with Certificates signed by the VMware Certificate Authority.

B.
Make VMware Certificate Authority an Intermediate Certificate Authority.

C.
Do not use VMware Certificate Authority, provision your own Certificates.

D.
Use SSL Thumbprint mode.

E.
Replace all VMware Certificate Authority issued Certificates with self-signed Certificates.

Explanation:
Explanation/Reference:

← Previous question

Next question →

Leave a Reply 5

babar

A. B and C are correct
https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.vsphere.security.doc/GUID-4469A6D3-048A-471C-9CB4-518A15EA2AC0.html

Reply

Matthew

ABC agreed.

Reply

SomeDude

FYI, from another dump, I saw SSL Thumbprint listed as a correct answer. This is not correct. From the article posted above SSL Thumbprint, “Can be used to retain 5.5 certificates during refresh. Use this mode only temporarily in debugging situations.”

Reply

SomeDude

Also, this is very close to question 4.

Reply

Nigel

For those confused, thumbprint cert can be a replacement method only for the ESXi host.

Reply