OPERATIONAL DEFECT DATABASE
...
...
It is common for dedicated SaaS environments to have custom Device Services, API, and Console URLs. For example, instead of CNXXX.awmdm.com, they may feature console.company.com. When custom URLs are utilized, as a customer you are responsible for maintaining the public SSL certificate and sharing it with VMware so our internal team can update it in the corresponding SaaS environment. You must obtain a renewed certificate from their public certificate provider (such as GoDaddy, Verisign, etc.). Note: The SSL certificate renewal process is dependent on your Workspace ONE UEM environment deployment type: Dedicated SaaS (Dedicated Hosted/Cloud) environments: The SSL certificate renewal process requires actions on both your side and from Workspace ONE's internal team. This article focuses on the Dedicated SaaS SSL certificate renewal process, specifically when custom URLs are utilized. Shared SaaS (Shared Hosted/Cloud) environments: Workspace ONE's internal team completes the SSL certificate renewal process from start to finish on your behalf. On Premises environments: You are responsible for the SSL certificate renewal process from start to finish. What is an SSL Certificate? A Secure Sockets Layer (SSL) certificate is installed on a web server to provide security for online communication.
General SSL Renewal Process A Certificate Signing Request (CSR) is generated on a server and contains information that the certificate provider will utilize to generate your certificate. It also contains the public key that will be included in the certificate and is signed with the private key. The CSR can be generated in any Windows server. The CSR is sent to the certificate provider (GoDaddy, VeriSign, etc.). The certificate provider shares the Issuer Certificate, Intermediary Certificate and Root Certificate. These are normally provided in .crt or .cer format and must be converted to .pfx format before sharing them with VMware Technical Support. To update your company’s certificate in your Workspace ONE UEM URLs: Renew your certificate with your certificate provider and package your certificate in .pxf file format. Open a support request with VMware at least 10 days prior to expiration of the certificate. Please provide the following information in the support request: Expiration Date of Current Certificate: WS1 UEM Environment Number ( CNXXX) List the URLs which need to be updated with the new certificate Attach the renewed certificate .pfx file attached and the respective key passcode.
For additional details, please refer to the following resources:How to renew the SSL certificate on SEG (50114621)SSL Signing Certificates: Expiration & Renewal (2960975)How to renew/replace the SSL certificate on an AWCM server for Workspace ONE (2960970)
Click on a version to see all relevant bugs
VMware Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.
