Tag Archives: vmware

vCenter: Parameter for generation of ESXi Host certificates

Hi,

is a ESXi host part of a cluster then vCenter is responsible for the generation of the host certificates.
Continue reading vCenter: Parameter for generation of ESXi Host certificates

ESXi: Change encryption cipher modes

Hi,

security scanners may rank the ciphers a ESXi host uses for encryption as weak.
Continue reading ESXi: Change encryption cipher modes

ESXi: Generate a new selfsigned host certificate

Hi,

usually vCenter generates the certificates for the connected ESXi hosts. This is done by the VMCA and can be triggered by the vCenter GUI => Browser to the ESXi Host -> System -> Configure -> Certificate -> Renew.

To generate a new ESXi Host certificate, which is used for https connections at TCP/443 and for the CIM service TCP/5989, a script is located in /sbin.
Continue reading ESXi: Generate a new selfsigned host certificate

ESXi: Install a custom certificate


Hi,

these are the steps to install own certificates on an ESXi host.
Continue reading ESXi: Install a custom certificate

ESXi: Update to ESXi 7.0.3 failed

Hi,

if your ESXi host is on a version <= 7.0.2 an update using the Lifecycle Manager fails with an error. vCenter
host returned esxupdate code -1

and on the host

~ # cat /var/log/esxupdate.log | grep ERROR
ERROR: esximage.Errors.InstallationError: This upgrade transaction would skip ESXi Base Image VIB(s) VMW_bootbank_i40en_1.11.1.31-1vmw.703.0.0.49537716, which could cause failures post upgrade

Continue reading ESXi: Update to ESXi 7.0.3 failed