Anyone know why a 6.7 vCenter appliance would fail to accept new solution user certificates in both the UI and the CLI (Certificate-Manager)?
Specifics:
- 6.7U3C vCenter appliance in Enhanced-Linked mode
- Machine SSL certificate replaced without issue
- The VPXD, VPDX-extension, machine, and vsphere-webclient certificates will not replace
- There are no wild cards in the certificates [SANs or CNs, etc.]
- All of the vCenters in the environment have the same certificate templates and are the same, but they were upgraded to 6.7. This one is new.
The certificates were generated using open-ssl.
The template uses 4096, what should be the proper enhanced attributes, includes the corresponding type in the CN [e.g. machine-FQDN, VPXD-FQDN, etc.].
This is really odd.
GB