Use the Upload Certificate and Private Key
Option to Establish a Standard Key Provider Trusted Connection
Some Key Management Server (KMS) vendors require
that you upload the KMS server certificate and private key to the
vCenter Server
system. - Request a certificate and private key from the KMS vendor. The files are X509 files in PEM format.
Some KMS vendors generate a
certificate and private key for the connection and make them available to you.
After you upload the files, the KMS trusts your
vCenter Server
instance.
- Navigate to thevCenter Server.
- ClickConfigureand selectKey Management Servers.
- Select the KMS instance with which you want to establish a trusted connection.
- From theEstablish Trustdrop-down menu, selectMake KMS trust vCenter.
- SelectKMS certificate and private keyand clickNext.
- Paste the certificate that you received from the KMS vendor into the top text box or clickUpload a Fileto upload the certificate file.
- Paste the key file into the bottom text box or clickUpload a Fileto upload the key file.
- ClickEstablish Trust.
Finalize the trust
relationship. See
Finish the Trust Setup for a Standard Key Provider.