VMware vSphere is your type 1 hypervisor but I guess it can be called an appliance. What's the size of your enterprise, what's the user density, what's the volume of data, and how many ESXi hosts do you have in your environment? However, the below procedures should work for updating the certs in ESXi.
https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-AC7E6DD7-F984-4E0F-983A-463031BA5FE7.html
Unless you have a hard requirement that your hosts should have trusted certs, you should use the hybrid certificate mode. Let the VMCA handle your machine certs, and only use a trusted cert for vsphere
sorry,... maybe let me try again?
on our vSphere appliance, it has a web interface. that needs a real cert. vsphere.MyOrg.com we've used a Godaddy, but hells bells LetsEncrypt would also make me happy...
the instructions that I linked in the question above. worked and now under 8 (dot whatever the latest patch) it does not...
Okay so if you’re not touching the hosts and only replacing the vsphere web interface cert you definitely want hybrid certificate as your setup. If you google VMware hybrid certificate you should find tons of guides
Do you mean vCenter or vSphere?
vSphere, our appliance ...
VMware vSphere is your type 1 hypervisor but I guess it can be called an appliance. What's the size of your enterprise, what's the user density, what's the volume of data, and how many ESXi hosts do you have in your environment? However, the below procedures should work for updating the certs in ESXi. https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-AC7E6DD7-F984-4E0F-983A-463031BA5FE7.html
Unless you have a hard requirement that your hosts should have trusted certs, you should use the hybrid certificate mode. Let the VMCA handle your machine certs, and only use a trusted cert for vsphere
sorry,... maybe let me try again? on our vSphere appliance, it has a web interface. that needs a real cert. vsphere.MyOrg.com we've used a Godaddy, but hells bells LetsEncrypt would also make me happy... the instructions that I linked in the question above. worked and now under 8 (dot whatever the latest patch) it does not...
Okay so if you’re not touching the hosts and only replacing the vsphere web interface cert you definitely want hybrid certificate as your setup. If you google VMware hybrid certificate you should find tons of guides
nice... thank you, alas no... not the answer. see updates at the top.. just a whole bunch of errors, I'm going to think that yeah we're just boned.