The vCloud Automation Center Appliance uses lighttpd to run its own management site. You can change the SSL certificate of the management site service, When environments require increased security, you can create custom or self-signed certificates to secure the management site service on port 5480.

You can choose to install a new certificate or reuse the certificate used by vCloud Automation Center service on port :443.

By default the vCloud Automation Center Appliance SSL certificate and private key are stored in a PEM file, which is located at: /opt/vmware/etc/lighttpd/server.pem. To install a new certificate, ensure that you export your new SSL certificate and private key from the Java keystore to a PEM file. See Extracting Certificates and Private Keys.


Login through the appliance console or through SSH.


Back up your current certificate file.

 cp /opt/vmware/etc/lighttpd/server.pem /opt/vmware/etc/lighttpd/server.pem-bck

Replace the content of the file /opt/vmware/etc/lighttpd.conf with the new certificate.


Run the following command to restart the lighttpd server.

service vami-lighttpd restart


Login to the management console and validate that the certificate is replaced. You might need to restart your browser.

You have changed the certificate of the vCloud Automation Center Appliance management site.