A VMware Cloud Foundation administrator has been tasked with replacing self-signed certificates with those signed by a third-party Certificate Authority. A security policy disallows the integration and use of Microsoft Active Directory Certificate Services and prefers an external provider.
Which two steps must be taken in order to configure these certificates? (Choose two.)
To replace self-signed certificates with those signed by a third-party Certificate Authority in VMware Cloud Foundation, the administrator needs to perform the following steps: Generate Certificate Signing Requests from SDDC Manager, and create and package the certificates in a domain_name.tar.gz file. The generated CSR is sent to the third-party provider, who then signs the certificate, and the signed certificates are packaged properly before being imported back into the system.
Correct Answer is A & C
https://docs.vmware.com/en/VMware-Cloud-Foundation/4.4/vcf-admin/GUID-2A1E7307-84EA-4345-9518-198718E6A8A6.html
Correct Answer is A & E. C is last task
AE should be the corre. C is correct. However, that occurs after certificates have been signed by the Third-Party CA