Veeam Backup & Replication 9.5 Update 4 [Archived]
User Guide for VMware vSphere
Related documents
Search
This is an archive version of the document. To get the most up-to-date information, see the current version.

TLS Certificates

When you configure the Veeam Backup & Replication infrastructure, you can specify what TLS certificate must be used to establish a secure connection between the backup server and VMware vSphere server or storage systems. Veeam Backup & Replication offers the following options for TLS certificates:

  • You can choose to keep the default self-signed TLS certificate generated by Veeam Backup & Replication at the process of upgrading to a new version of Veeam Backup & Replication.
  • You can use Veeam Backup & Replication to generate a new self-signed TLS certificate. To learn more, see Generating Self-Signed Certificates.
  • You can select an existing TLS certificate from the certificates store. To learn more, see Importing Certificates from Certificate Store.
  • You can import a TLS certificate from a file in the PFX format. To learn more, see Importing Certificates from PFX Files.

TLS Certificates Note:

If you plan to use a certificate issued by your own CA, make sure that the certificate meets the following requirements:

  1. The following Key Usage extensions are enabled in the certificate: Digital Signature, Certificate Signing, Off-line CRL Signing, CRL Signing.
  2. The Key Type in the certificate is set to Exchange.
View all results across Veeam
Back to document search