One of the biggest challenges operations teams face is SSL certificate issuing and renewal. Often this is because different applications, like vendor appliances, have a complicated renewal process. Others can be because corporations simply miss the renewal date. If large enterprises like Microsoft sometimes fail at this, what hope do the rest of us have? Continue reading
Adding Internal CA SSL chains to Ansible AWX
I’m currently in the process of integrating my HobbitCloud machines into Ansible AWX. After creating an inventory, establishing my groups and adding my hosts, I began to create an SCM-based project that connects to my internal GitLab server. Unfortunately, I ran straight into an error. Continue reading
Securing VMware Horizon UAGs with Let’s Encrypt SSL certificates
Securing your Horizon Universal Access Gateway (UAG) with a genuine SSL certificate from a recognised vendor is an important process. It enables your users to be sure they’re connecting to the correct VDI infrastructure, and that the communications between their endpoint and remote desktop are secure. Continue reading
Wednesday Tidbit: Installing Certbot and the Route53 plugin on CentOS 8
This will be the smallest blog post I’ve ever created, but I simply had to share this as it has been winding me up all night.
To install Certbot, and more importantly the AWS Route53 plugin on CentOS 8, you first need the Python Package Manager – known as PIP. Continue reading
Wednesday Tidbit: Make sure your Certificate Authority signature algorithm is valid for vCenter certificates
Yesterday I decided it was time to rebuild my VCSA. Being a brand new one, I thought it would be a good opportunity to replace the default untrusted SSL certificates with genuine ones issued from my in-house Microsoft Certificate Authority. Continue reading
Implementing a VMware Virtual Desktop Infrastructure with Horizon View 6.2 – Part 8: Remote access
In part 7 we configured our F5 devices to load-balance traffic to the VMware View Connection Servers.
In the final part of this series we deploy a View Access Point in the DMZ to provide access to desktop and published applications to remote users.
Wednesday Tidbit: Replace SSL certificates on vCloud Connector using the Java Keytool
A few days ago I decided to redeploy the vCloud Connector Server and Node to my lab. After performing the initial installation I set about replacing the default untrusted SSL certificates with genuine ones, only to receive an error. Continue reading
Building an advanced lab using VMware vRealize Automation – Part 10: Configure tenants
In part 9 we installed and configured the IaaS platform for our lab.
In this part we discuss tenants. We configure the default tenant, and explain why you might need more than one. Continue reading
Building an advanced lab using VMware vRealize Automation – Part 9: Deploy and configure the IaaS platform
In part 8 we installed and configured the vRealize Automation Appliance into the lab.
In this part we deploy and configure the IaaS platform. This will involve building a Windows Server VM and installing the requisite components. Once done, we will secure the platform with an SSL certificate from our Certificate Authority. Continue reading
Building an advanced lab using VMware vRealize Automation – Part 8: Deploy and configure the vRA Appliance
In part 7 we configured SSL certificates for our newly deployed vCenter Server Appliance. In this part, we deploy the vRealize Automation Appliance into the lab.
After deployment we will perform a number of tasks to enable the appliance to work in the lab environment.