PCFDev allows developers and operators to run Pivotal Cloud Foundry in a single VM on their own machines. It is deployed as a Vagrant image with many sensible defaults. This includes a single wildcard domain, *.local.pcfdev.io, and a single self-signed SSL certificate for use with that domain. But, what if I wanted to use other wildcard domains and certificates?
PCFDev does not take advantage of a local load balancer, so you simply need to update the SSL certificates being used by the gorouter. Since PCFDev uses Vagrant, you simply need to ssh into the running VM using
vagrant ssh, and use the openssl tool to generate your new certificates. The following steps also move the original certs into a backup directory in case you want to switch back to those default certs.
sudo su -
mv *.pem ./bak
openssl ecparam -genkey -out key.pem -name prime256v1
openssl req -x509 -new -key key.pem -out cert.pem -extensions server_req_extensions -config temp.cnf
monit restart gorouter