vRSLCM 8.x – Quick Tip – Change vRSLCM Certificate


Welcome to our blog! Today I want to quickly share how you can change the Certificate of vRealize Suite Lifecycle Manager (vRSLCM). Let’s get started!


  • The Private Key – If you have generated a Certificate Signing Request (CSR) via vRSLCM for example, you can find the Private Key in this CSR file by opening it with a text editor.
  • The Certificate of the vRSLCM Appliance (Base64 Encoded)
  • The Certificate of your Intermediate CA (optionally – if needed) & the Root CA (Mandatory)
  • Create a .pem file – The certificate of vRSLCM needs to be in the form of a .pem file with the following structure:

    Make sure the .pem file contains at least your Private Key, the Certificate of the vRSLCM Appliance and any Root CA Certificate. Optionally you can also add your Intermediate CA Certificate if needed. You can create this .pem file easily with a text editor. The information obtained above needs to be put in a .pem file as highlighted in the screenshot.

Change the Certificate in vRSLCM!

Great, we now have the .pem file for your vRSLCM Appliance. Let’s change it!

  1. Browse to the Web UI of your vRSLCM Appliance and login with an account that has privileges in the ‘Locker‘ component of vRSLCM.
  2. On the main page, select ‘Locker
  3. In Locker make sure ‘Certificates‘ is selected and click ‘Import‘. We are now going to import the newly created vRSLCM .pem file. Make sure to select it, provide it a descriptive name & import it.
  4. Now our vRSLCM .pem file is in vRSLCM, let’s go to ‘Lifecycle Operations‘ by clicking on the Menu Icon on the top right of your screen.
  5. In Lifecycle Operations click on ‘Settings
  6. Choose ‘Change Certificate
  7. In the Change Certificate screen your current certificate is shown, make sure to select ‘Replace Certificate
  8. Now select the Certificate that we just imported in vRSLCM earlier
  9. Click on ‘Next‘ and run the Precheck. If all goes well click finish
  10. Now the vRSLCM should have your newly created certificate.
    Open an incognito tab to your vRSLCM Appliance or refresh the page and you should be greeted with your newly uploaded certificate as shown below:

There you go! As always: if you have any questions or concerns, don’t hesitate to reach out!

Have a nice day!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s