vSphere 6 introduces a new component called the Platform Services Controller (PSC), which is foundational to vCenter and its services. The PSC contains multiple services, which include:
License service
Single Sign-On (Secure Token Service, Identity Management Server)
VMware Directory Service
Lookup Service
VMware Certificate Authority
VMware Endpoint Certificate Store
The new VMware Certificate Authority (VMCA) and VMware Endpoint Certificate Store (VECS) change the way that certificates are deployed and managed in a vSphere environment.
vSphere components, such as vCenter Server, Single Sign-On, and the vSphere Web Client, use SSL certificates to securely communicate with each other and with ESXi hosts.
As of vSphere 6, the VMCA provisioned a signed certificate for each vCenter service and each ESXi host. There are several options for certificate management in vSphere 6: replace existing certificates with VMCA signed certificates, make VMCA a subordinate...