Create and replace the vCloud director with self-signed certificates

vCloud director looks for 2 certificates within the configured keystore. One for http and the other is consoleproxy . The below keytool create commands create a keystore with the certificate for specified alias, keystore type, keystore name, keystore password, validity, Org information and SAN field details. Keytool location /opt/vmware/vcloud-director/jre/bin Step 0 : cd /opt/vmware/vcloud-director/jre/bin Step 1 : Command to create certificate for http : ./keytool -keystore /opt/vmware/certificates.ks -alias http -storepass passwd -keypass passwd -storetype JCEKS -genkeypair -keyalg RSA -keysize 2048 -validity 730 -dname "CN=vcd91.vCloud.local, OU=GSS, O=VMware, L=Bengaluru, S=Karnataka, C=IN" -ext "san= dns:vcd91.vCenter.local,dns:vcd91,ip:10.109.28.100 " Here the command creates the keystore named certificates.ks in the /opt/vmware directory The alias is http Validity of 2 years password is passwd Step 2 : Command to create certi