How to check if STS certificate is about to expire or expired already

Piotr Tarnawski 5 July 2021

By now you should know what to do if your STS certificate expire, but if you have been caught on this one here are simple steps to recover:

STS certificate expiration – “Signing certificate is not valid” error in VCSA 6.5.x,6.7.x or vCenter Server 7.0.x

NOTE: In vCenter Server version 6.5U3k, 6.7 U3j, or 7.0 U1, you receive a weekly notification when the vCenter Single Sign-On Security Token Service (STS) signing certificate is close to expiration. Notifications start 90 days before the STS certificate expires and turn into daily over the last week before expiration.

If you not running versions mentioned above then you can check STS certificate manually:

Download phyton script from VMware website or click here
Open script in text editor
SSH to VCSA
Create new checksts.py file for example vi checksts.py
Copy script’s body to your checksts.py file
Run python checksts.py

Please like and share to spread the knowledge in the community.

Visit my FB page: https://www.facebook.com/AngrySysOps

Subscribe to my YouTube channel: https://www.youtube.com/channel/UCRTcKGl0neismSRpDMK_M4A

Please leave the comment

Related

A note to our visitors

This website has updated its privacy policy in compliance with changes to European Union data protection law, for all members globally. We’ve also updated our Privacy Policy to give you more information about your rights and responsibilities with respect to your privacy and personal information. Please read this to review the updates about which cookies we use and what information we collect on our site. By continuing to use this site, you are agreeing to our updated privacy policy.

%d bloggers like this: