Hello,
i have successful replaced the VMCA CA certificate but when generating the machine certificate it seems not be possible to enter multiple hostnames:
In this KB article: VMware KB: Using certool to generate CSRs that include multiple DNS names for one host
i can read that i should modify the certool.cfg as follows:
Hostname = server.acme.com,server,192.168.1.1
But when i try to sign the certificate i got:
certool --gencert --cert=new-vmca-ssl.crt --privkey=ssl-key.priv --config=certool.cfg
Using config file : certool.cfg
Error: 70061, VMCAGetSignedCertificatePrivate() failedStatus : Failed
Error Code : 70061
Error Message : Invalid Subject Alternate Name specified.
I want that the browser gives no error when entering the IP or only the hostname without fqdn, because this i need more subject alternate names.
Hope someone has a hint for me...
Kind regards
Stefan