This article focusing on the main piont to help to renew the local NSX-T sertificates:
Use REST API requests by Postman for example.
use admin credentials to make API requests.
STEP x: Generate self signed certificate:
Make sure that when this certificate was imported, the option Service Certificate was set to No
STEPx: Validate the cetrificate:
- The basic API call for this is: GET https://<nsx-mgr>/api/v1/trust-management/certificates/<cert-id>?action=validate>
Responce shuld be: "status": "OK"
POST https://<nsx-local-mgr>/api/v1/trust-management/certificates?action=set_pi_certificate_for_federation
    "cert_id": "c5f13ec0-8075-441e-80b5-aeb707f6b87e",
    "service_type": "LOCAL_MANAGER"
Main article for more information:
After implementation test:
Search the cert ID and section "used_by" should represent where the cert is in use.

Google AdSence

AUST IT - Computer help out of hours, when you need it most.

Find out why we do it for less.


AUST IT will help you resolve any technical support issues you are facing onsite or remotely via remote desktop 24/7. More...


Reservoir, Melbourne,
3073, VIC, Australia

Phone: 0422 348 882

This email address is being protected from spambots. You need JavaScript enabled to view it.

Sydney: 0481 837 077


Join us in social networks to be in touch.


Complete the form below, and we'll send you our emails with all the latest AUST IT news.