Installing Certificates
If an existing TLS certificate expires, or if you want to use another certificate, for example, the one obtained from a Certificate Authority, you can install a new certificate. If you want to use a certificate obtained from a Certificate Authority, make sure that the Enterprise Manager IP address or fully qualified domain name is specified in the certificate subject or subject alternative name.
Note |
To update the Veeam Backup Enterprise Manager REST API certificate, use the netsh command. For more information, see the TLS Certificate section of the Veeam Backup Enterprise Manager REST API Reference. |
To install a new certificate, follow these steps:
- Log in to Enterprise Manager using an administrative account.
- To open the Configuration view, click Configuration in the top right corner.
- Select the Settings section on the left of the Configuration view.
- On the Certificates tab, click Install and select the certificate that you want to install:
- Select Server to install the certificate used by the Veeam Backup Enterprise Manager Service and Veeam Guest Catalog Service to connect to backup servers.
- Select Web UI to install the certificate used by the the Veeam Backup Enterprise Manager web app and Veeam vSphere Client plug-in to connect to a web browser.
- At the Certificate Type step of the Manage Certificate wizard, select one of the following options:
- Select a certificate from the certificate store
- Generate new certificate
- Upload a custom certificate
- At the next step step of the wizard either provide a certificate friendly name for a self-signed certificate or choose an existing certificate that you want to install.
- To install the certificate, click Finish.