It looks like the new Certificate was issued by a CA that is not trusted by the VMware Workstation default CA package. A quick Wireshark trace identified that the Certificate handshake was coming back as an 'Unknown CA'.
Opening up the VMware Update site (https://softwareupdate.vmware.com/cds) shows the new certificate issued on 3/2/2013 was provided by Baltimore CyberTrust Root and Cybertrust Public SureServer SV CA. If you open the trusted certificates (Mozilla-Root-Certs.crt) from the VMware Workstation Installation directory in a text editor and search for Baltimore it will come up with no results.
You are able to add the two certificates you need by following the instructions below.
- Open a browser and navigate to the https://softwareupdate.vmware.com website.
- Click on the Certificate icon to view the certificates for the site.
- Click on the Certification Path tab to view the full Certificate chain.
- Click on the root certificate Baltimore CyberTrust Root and click the View Certificate button.
- Click on the Details tab and then the Copy to File button.
- Export the certificate in Base-64 encoded x.509 format to your VMware Workstation installation directory asCyberRoot.cer.
- Repeat the above steps (4-6) for the Cybertrust Public SureServer SV CA certificate saving the file out asCyberInter.cer.
You are now ready to add the certificates into the trusted CA store (Mozilla-Root-Certs.crt).
- Open a command prompt (or shell prompt if running on Linux) as Administrator or root.
- Start by making a backup of the original Mozilla-Root-Certs.crt file. Use the method of your choice. (copy mozilla-root-certs.crt mozilla-root-certs.crt.orig)
- Add in the Baltimore CyberTrust Root certificate using openssl. Openssl should be installed in the root of your VMware Workstation directory.
- openssl x509 -text -in CyberRoot.cer >> Mozilla-Root-Certs.crt
- Add in the Cybertrust Public SureServer SV CA certificate using the same command as above.
- openssl x509 -text -in CyberInter.cer >> Mozilla-Root-Certs.crt