All KB cards
vRealize Automation – Change the VAMI certificate

Set the certificate private key password in a shell variable

INKEY="<<CERT_PASSPHRASE>>"

Get a PFX file from original cert

openssl pkcs12 -export \
    -in <<fqdn>>.crt \
    -inkey <<fqdn>>.key \
    -certfile ca-root.crt \
    -name "rui" \
    -passout pass:$INKEY \
    -out <<fqdn>>.pfx

Get PEM file from orginial cert

openssl pkcs12 \
    -in <<fqdn>>.pfx \
    -inkey <<fqdn>>.key \
    -out <<fqdn>>.pem \
    -nodes \
    -passin pass:$INKEY

Replace lighttpd certificates

mv /opt/vmware/etc/lighttpd/server.pem /opt/vmware/etc/lighttpd/server.pem-bak
cp <<fqdn>>.pem /opt/vmware/etc/lighttpd/server.pem
service vami-lighttp restart