Configure vRO to accept BT Diamond default SSL cert
If using the default BT Diamond SSL certificate, your vRO server may not accept the certificate, resulting in failed connections from vRO to the BT Diamond API.
To resolve this:
1. SSH to the vRO appliance(s) as root
2. cd to the java security directory
# cd /usr/java/jre-vmware/lib/security/
3. Make a copy of the java.security file
# cp java.security java.security.orig
4. edit the java.security file and search for and comment out the following lines:
#jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024
#jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768
#jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024
5. save the java.security file
6. restart the vco-server service
NOTE: If you have multiple vRO servers, repeat the above steps on all of them, including the restart.
Related Blogs
How to get Slack notifications when StormForge applies recommendations
The StormForge Applier does its job quietly. It watches for recommendations, applies patches to your workloads, and moves on—no fanfare,…
When Hardware Triples in Price, Idle Capacity Becomes a Line Item.
A platform leader at a Fortune 50 company recently told his app teams something that I keep thinking about. The message was very…
StormForge vs ScaleOps: A Technical Comparison of Kubernetes Rightsizing Approaches
StormForge and ScaleOps both automate Kubernetes resource optimization, but they take meaningfully different approaches to how much control you hand over and when. This page walks through the differences in architecture, automation model,…