VMware vSphere

 View Only

vCenter - Identity Source LDAP Certificate is about to expire

  • 1.  vCenter - Identity Source LDAP Certificate is about to expire

    Posted May 26, 2021 01:21 PM

    I am seeing the below message in vCenter

    Identity Source LDAP Certificate is about to expire

    I looked at Identity Sources under vCenter Administrator and see the previous Admin of this system has added two ldap servers:
       ldaps://id01.dev.org
       ldaps://id02.dev.org

    Two weeks ago week, id02.dev.org was taken off line.

    The Cert error just appeared last Friday

    I ran the command below on VCSA to check the expiration date, and one source shows 2039

    So, I am not sure what is causing the error or how to correct it.

     

      /opt/vmware/bin/sso-config.sh -get_identity_sources

    0: ldaps://id01.dev.org
    1: ldaps://id02.dev.org
    Certificates:
        0:      subject: CN=id01.dev.org, O=DEV.ORG
                 issuer: CN=Certificate Authority, O=DEV.ORG
              NotBefore: Wed Feb 06 18:20:12 UTC 2019
               NotAfter: Sat Feb 06 18:20:12 UTC 2021
                 Serial: 8
        1:     subject: CN=Certificate Authority, O=DEV.ORG
                issuer: CN=Certificate Authority, O=DEV.ORG
             NotBefore: Wed Feb 06 18:18:16 UTC 2019
              NotAfter: Sun Feb 06 18:18:16 UTC 2039