Security Token Service (STS) signing certificates can expire as soon as two years from the initial deployment
, and if expired, it can cause users to be unable to log in to vSphere Client or the vmware-vpxd service to fail to start.
To prevent this, it is recommended to replace the STS certificate if the expiration date is in less than 6 months.
To replace the certificate, users can run the fixst script to regenerate the certificates.
Additionally, users can try browser workarounds to access vCenter via the Flex client.
See more results on Neeva
Summaries from the best pages on the web
VMware Technology Network VMTN provides a solution to a message that STS Signing Certificates are about to expire on linked vCenter servers (6.7 Update 3). The solution involves running the fixst script to regenerate the certificates, and users can try browser workarounds to access vCenter via the Flex client. Additionally, the article provides a note under impact/risks for the solution.
Solved: vCenter 6.7 Update 3 Message - "STS Signing Certif... - VMware Technology Network VMTN