It is important that measures are taken to ensure that installation files are valid and that communication between the vRealize Infrastructure Navigator virtual appliance and the vSphere Web Client are secure.

Before performing an installation or upgrade, it is good practice to validate the installation files to avoid middleman attacks.

Use SSH hashes to verify the files.

vRealize Infrastructure Navigator uses digital certificates to enable secure communication between the vRealize Infrastructure Navigator virtual appliance and the vSphere Web Client, based on Transport Layer Security (TLS).

TLS is based on the Secure Sockets Layer (SSL) specifications developed by Netscape Communications and has been standardized by the Internet Engineering Task Force (IETF). TLS provides privacy of communication by using encryption and also allows you to verify the authenticity of the server with which you are communicating.

During the first boot of the appliance, a self-signed certificate is generated. This certificate is used for encrypted TLS communication.