Installing Certificates

If an existing TLS certificate expires, or if you want to use another certificate, for example, the one obtained from a Certificate Authority, you can install a new certificate. If you want to use a certificate obtained from a Certificate Authority, make sure that the Enterprise Manager IP address or fully qualified domain name is specified in the certificate subject or subject alternative name.

Note

To update the Veeam Backup Enterprise Manager REST API certificate, use the netsh command. For more information, see the TLS Certificate section of the Veeam Backup Enterprise Manager REST API Reference.

To install a new certificate, follow these steps:

  1. Log in to Enterprise Manager using an administrative account.
  2. To open the Configuration view, click Configuration in the top right corner.
  3. Select the Settings section on the left of the Configuration view.
  4. On the Certificates tab, click Install and select the certificate that you want to install:
  • Select Server to install the certificate used by the Veeam Backup Enterprise Manager Service and Veeam Guest Catalog Service to connect to backup servers.
  • Select Web UI to install the certificate used by the the Veeam Backup Enterprise Manager web app and Veeam vSphere Client plug-in to connect to a web browser.

Installing Certificate

  1. At the Certificate Type step of the Manage Certificate wizard, select one of the following options:
  • Select a certificate from the certificate store
  • Generate new certificate
  • Upload a custom certificate

Installing Certificates

  1. At the next step step of the wizard either provide a certificate friendly name for a self-signed certificate or choose an existing certificate that you want to install.

Installing Certificates

  1. To install the certificate, click Finish.

Page updated 9/2/2025

Page content applies to build 13.0.0.4967