Update an existing PKI connector
Update an existing PKI connector
PKI connector to update
|
name
string
required |
|
type
string
required
Value
stream
|
|
endPoint
string
requiredStream's base endpoint |
|
template
string
requiredStream's certificate template to use for enrollment |
|
ca
string
requiredStream's technical name of the CA on which to enroll |
|
loginCredentials
string | null
Name of the password credentials to use to authenticate on the PKI |
|
authenticationCredentials
string | null
Name of the certificate credentials to use to authenticate on the PKI |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
type
string
required
Value
acmeenroll
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
endPoint
string
requiredThe directory url of the ACME endpoint |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
timeout
string | null (FiniteDuration)
required |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
accountKeyType
string (Keytype)
requiredThe key type to use to generate the account key |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
dnsChallengeProvider
object (Manual DNS Challenge Provider) | object (Nameshield DNS Challenge Provider)
required
DNS Provider configuration to provision the DNS challenge. Available from 2.7.7 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
proxy
string | null
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
queue
string | null
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
eab
string | null
password credentials name to use for External Account Binding |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
accountEmail
string | null
Email to associate with the account |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
rotateAccount
boolean | null
If enabled, regenerate the account (does not need to be specified on creation) |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
domainDictionaryProvider
object (Static Domain Dictionary Provider) | null
The dictionary provider |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
setTrigger
object (ACME REST Request)
The trigger that will set the DNS challenge on the provider. Available before 2.7.7 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
unsetTrigger
object (ACME REST Request)
The trigger that will unset the DNS challenge on the provider. Available before 2.7.7 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
name
string
required |
|
type
string
required
Value
acmerevoke
|
|
acmeDirectoryUrl
string
requiredThe directory url of the ACME endpoint |
|
timeout
string | null (FiniteDuration)
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
evtadcs
|
|
endPoint
string
required |
|
caConfig
string
required |
|
profile
string
required |
|
domain
string
required |
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
enrollmentCredentials
string
requiredName of the certificate credentials to use to enroll on the PKI |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
msadcs
|
|
endPoint
string
required |
|
profile
string
required |
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
enrollmentCredentials
string
requiredName of the certificate credentials to use to enroll on the PKI |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
awsacmpca
|
|
region
string
required |
|
caArn
string
required |
|
accessCredentials
string | null
Name of the password credentials containing Access Key Id and Secret Access Key. If not defined, an account present in environment variables can be used. |
|
templateArn
string | null
|
|
roleArn
string | null
|
|
validDays
string | null
|
|
retryInterval
string | null
|
|
signingHash
string | null
|
|
certificateUsage
string | null
|
|
caPolicyOid
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
certeurope
|
|
endPoint
string
required |
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
offerId
string
required |
|
organizationId
string
required |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
revReason
string | null
|
|
retryInterval
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
cmp
|
|
endPoint
string
required |
|
profile
string
required |
|
issuerCADN
string
required |
|
issuerCACert
string
required |
|
signerCredentials
string
requiredName of the certificate credentials to use to sign on the PKI |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
emailMap
string | null
|
|
sanDnsMap
string | null
|
|
cnMap
string | null
|
|
profileMap
string | null
|
|
issuerMap
string | null
|
|
legacyCMPStyle
boolean | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
||
|
type
string
required
Value
digicert
|
||
|
apiCredentials
string
requiredName of the raw credentials containing the API key to authenticate on the PKI |
||
|
organizationId
integer
required |
||
|
baseUrl
string
The base URL of the used digicert instance.
Enum
https://www.digicert.com/
https://certcentral.digicert.eu/
|
||
|
productId
string
One of the DigiCert product identifier an exhaustive list can be found here: https://dev.digicert.com/en/certcentral-apis/services-api/glossary.html#product-identifiers |
||
|
caCertId
string | null
|
||
|
retryInterval
string | null
|
||
|
skipApproval
boolean | null
|
||
|
customConnectorDataMapping
object | null
|
||
|
||
|
timeout
string | null
|
||
|
proxy
string | null
|
||
|
queue
string | null
|
||
|
name
string
required |
|
type
string
required
Value
ejbca
|
|
endPoint
string
required |
|
profile
string
required |
|
caName
string
required |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
eeProfile
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
entrust
|
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
certType
string
required |
|
requesterDefaultMail
string
required |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
requesterName
string | null
|
|
requesterPhone
string | null
|
|
certLifetime
string | null
|
|
clientId
integer | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
idca
|
|
endPoint
string
required |
|
profile
string
required |
|
authenticationCredentials
string | null
requiredName of the certificate credentials to use to authenticate on the PKI |
|
timeout
string | null (FiniteDuration)
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
||
|
type
string
required
Value
integrated
|
||
|
cryptoType
string
required
Enum
legacy
hybrid
pqc
|
||
|
caKey
object | null (SecretString)
|
||
|
||
|
caCert
string | null
|
||
|
crlPath
string | null
|
||
|
crlLifetime
string | null
|
||
|
certType
string | null
|
||
|
signAlg
string | null
|
||
|
crtLifetime
string | null
|
||
|
crtBackDate
string | null
|
||
|
checkPop
boolean | null
|
||
|
queue
string | null
|
||
|
name
string
required |
|
type
string
required
Value
fcms
|
|
endPoint
string
required |
|
apiCredentials
string
requiredName of the raw credentials containing the API key to authenticate on the PKI |
|
templateId
integer
required |
|
defaultOwner
string
required |
|
authenticationDomainId
integer
required |
|
deleteOnRevoke
boolean
required |
|
ownerGroups
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
gsatlas
|
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
hashAlgorithm
string | null
|
|
certificateUsage
string | null
|
|
retryInterval
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
gsmssl
|
|
endpointType
string
required |
|
profile
string
required |
|
loginCredentials
string
requiredName of the password credentials to use for technical account on the PKI |
|
domainId
string
required |
|
certificateValidity
integer | null
|
|
defaultEmail
string | null
|
|
defaultPhone
string | null
|
|
retryInterval
string | null
|
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
otpki
|
|
endPoint
string
required |
|
profile
string
required |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
emailMap
string | null
|
|
sanDnsMap
string | null
|
|
sanEmailMap
string | null
|
|
uidMap
string | null
|
|
zone
string | null
|
|
zoneLabel
string | null
The name of the label where the zone value is stored on an enrolled certificate |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
metapki
|
|
endPoint
string
requiredMetaPKI base endpoint |
|
endPointIssuingCA
string
requiredCertificate authority of the endpoint |
|
profile
string
required |
|
workflow
string | null
required |
|
profilCle
string | null
required |
|
validDays
string | null (FiniteDuration)
|
|
formPorteurName
string | null
|
|
authenticationCredentials
string | null
Name of the certificate credentials to use to authenticate on the PKI |
|
timeout
string | null (FiniteDuration)
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
nameshield
|
|
apiCredentials
string
requiredName of the api-key credentials to use to authenticate on the PKI |
|
environment
string
requiredThe testing environment will use https://ote-api.nameshield.net endpoint and the production will use https://api.nameshield.net
Enum
production
testing
|
|
organizationId
string
required |
|
productId
string
required |
|
customerId
string
required |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
nexuscm
|
|
endPoint
string
required |
|
endPointIssuingCA
string
required |
|
procedure
string
required |
|
authenticationCredentials
string
requiredName of the certificate credentials to use to authenticate on the PKI |
|
timeout
string | null
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
sectigo
|
|
loginCredentials
string
requiredName of the password credentials to use to authenticate on the PKI |
|
customerUri
string
required |
|
organizationId
integer
required |
|
profile
string
required |
|
retryInterval
string | null (FiniteDuration)
|
|
validDays
string | null (FiniteDuration)
|
|
endpointType
string
Enum
eu
hard
default
|
|
timeout
string | null (FiniteDuration)
|
|
proxy
string | null
|
|
queue
string | null
|
|
name
string
required |
|
type
string
required
Value
swisssign
|
|
mpkiCredentials
string
requiredName of the password credentials to use to authenticate on the PKI. It should contains the mpkiId as the login and the apiKey as password. |
|
endPoint
string
requiredSwiss base endpoint |
|
productUuid
string
requiredThe product Uuid that need to be retrieved from the swiss sign api's ( |
|
proxy
string | null
|
|
timeout
string | null
|
|
queue
string | null
|
-
200 PKI connector successfully updated
application/json_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuestreamendPointstring requiredStream's base endpoint
templatestring requiredStream's certificate template to use for enrollment
castring requiredStream's technical name of the CA on which to enroll
loginCredentialsstring | nullName of the password credentials to use to authenticate on the PKI
authenticationCredentialsstring | nullName of the certificate credentials to use to authenticate on the PKI
timeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueacmeenrollendPointstring requiredThe directory url of the ACME endpoint
timeoutstring | null (FiniteDuration) requiredaccountKeyTypestring (Keytype) requiredThe key type to use to generate the account key
statusobject | null (PKI Connector status) requiredThe status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
accountUrlstring requiredUrl of the account on the ACME directory
dnsChallengeProviderobject (Manual DNS Challenge Provider) | object (Nameshield DNS Challenge Provider) requiredDNS Provider configuration to provision the DNS challenge. Available from 2.7.7
typestring requiredValuemanualsetTriggerobject (ACME REST Request) requiredThe trigger that will set the DNS challenge on the provider. Available before 2.7.10
urlstring (TemplateString) requiredThe url to request
methodstring requiredThe HTTP method to use for the request
authenticationTypestring requiredThe authentication type to use while making the REST call. Is linked to credentials.
Enumnoauthbasicx509bearercustomexpectedHttpCodesarray of integer requiredThe success HTTP codes for the request. If the return code is not in this list, the notification will be considered failed.
timeoutstring requiredTimeout for the HTTP request.
credentialsstring | nullName of the credentials to use for authentication
headersarray of object | null (Header)The headers of the request
Array [
namestring requiredThe header name
valuestring requiredThe header value
]
payloadTypestring | nullFor UI purposes in order to format the body correctly
payloadstring | nullThe body of the request. Can contain dynamic attributes.
proxystring | nullName of a Proxy to use while making the request
unsetTriggerobject (ACME REST Request)The trigger that will unset the DNS challenge on the provider. Available before 2.7.10
urlstring (TemplateString) requiredThe url to request
methodstring requiredThe HTTP method to use for the request
authenticationTypestring requiredThe authentication type to use while making the REST call. Is linked to credentials.
Enumnoauthbasicx509bearercustomexpectedHttpCodesarray of integer requiredThe success HTTP codes for the request. If the return code is not in this list, the notification will be considered failed.
timeoutstring requiredTimeout for the HTTP request.
credentialsstring | nullName of the credentials to use for authentication
headersarray of object | null (Header)The headers of the request
Array [
namestring requiredThe header name
valuestring requiredThe header value
]
payloadTypestring | nullFor UI purposes in order to format the body correctly
payloadstring | nullThe body of the request. Can contain dynamic attributes.
proxystring | nullName of a Proxy to use while making the request
setTriggersarray of objects (ACME REST Request)The triggers that will set the DNS challenge on the provider. Available from 2.7.10
Array [
urlstring (TemplateString) requiredThe url to request
methodstring requiredThe HTTP method to use for the request
authenticationTypestring requiredThe authentication type to use while making the REST call. Is linked to credentials.
Enumnoauthbasicx509bearercustomexpectedHttpCodesarray of integer requiredThe success HTTP codes for the request. If the return code is not in this list, the notification will be considered failed.
timeoutstring requiredTimeout for the HTTP request.
credentialsstring | nullName of the credentials to use for authentication
headersarray of object | null (Header)The headers of the request
Array [
namestring requiredThe header name
valuestring requiredThe header value
]
payloadTypestring | nullFor UI purposes in order to format the body correctly
payloadstring | nullThe body of the request. Can contain dynamic attributes.
proxystring | nullName of a Proxy to use while making the request
]
unsetTriggersarray of objects (ACME REST Request)The triggers that will unset the DNS challenge on the provider. Available from 2.7.10
Array [
urlstring (TemplateString) requiredThe url to request
methodstring requiredThe HTTP method to use for the request
authenticationTypestring requiredThe authentication type to use while making the REST call. Is linked to credentials.
Enumnoauthbasicx509bearercustomexpectedHttpCodesarray of integer requiredThe success HTTP codes for the request. If the return code is not in this list, the notification will be considered failed.
timeoutstring requiredTimeout for the HTTP request.
credentialsstring | nullName of the credentials to use for authentication
headersarray of object | null (Header)The headers of the request
Array [
namestring requiredThe header name
valuestring requiredThe header value
]
payloadTypestring | nullFor UI purposes in order to format the body correctly
payloadstring | nullThe body of the request. Can contain dynamic attributes.
proxystring | nullName of a Proxy to use while making the request
]
typestring requiredValuenameshieldcredentialsstring requiredraw credentials name to use to authenticate on the Nameshield API
endPointstring requiredNameshield API endpoint
timeoutstring requiredTimeout when requesting Nameshield API
proxystring | nullproxystring | nullqueuestring | nulleabstring | nullpassword credentials name to use for External Account Binding
accountEmailstring | nullEmail to associate with the account
rotateAccountboolean | nullIf enable, regenerate the account (does not need to be specified on creation)
domainDictionaryProviderobject (Static Domain Dictionary Provider) | nullThe dictionary provider
typestring requiredValuestaticdomainsarray of object requiredThe domain dictionaries
Array [
domainstring requiredTop level domain name
dictionaryarray of object (Map entry) requiredArray [
keystringThe key of the entry
valuestringThe value of the entry
]
]
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueacmerevokeacmeDirectoryUrlstring requiredThe directory url of the ACME endpoint
statusobject | null (PKI Connector status) requiredThe status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
timeoutstring | null (FiniteDuration)proxystring | nullqueuestring | null_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueevtadcsendPointstring requiredcaConfigstring requiredprofilestring requireddomainstring requiredloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
enrollmentCredentialsstring requiredName of the certificate credentials to use to enroll on the PKI
timeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuemsadcsendPointstring requiredprofilestring requiredloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
enrollmentCredentialsstring requiredName of the certificate credentials to use to enroll on the PKI
timeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueawsacmpcaregionstring requiredcaArnstring requiredaccessCredentialsstring | nullName of the password credentials containing Access Key Id and Secret Access Key. If not defined, an account present in environment variables can be used.
templateArnstring | nullroleArnstring | nullvalidDaysstring | nullretryIntervalstring | nullsigningHashstring | nullcertificateUsagestring | nullcaPolicyOidstring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuecerteuropeendPointstring requiredloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
offerIdstring requiredorganizationIdstring requiredauthenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
revReasonstring | nullretryIntervalstring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuecmpendPointstring requiredprofilestring requiredissuerCADNstring requiredissuerCACertstring requiredsignerCredentialsstring requiredName of the certificate credentials to use to sign on the PKI
authenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
emailMapstring | nullsanDnsMapstring | nullcnMapstring | nullprofileMapstring | nullissuerMapstring | nulllegacyCMPStyleboolean | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuedigicertapiCredentialsstring requiredName of the raw credentials containing the API key to authenticate on the PKI
organizationIdinteger requiredbaseUrlstringThe base URL of the used digicert instance.
Enumhttps://www.digicert.com/https://certcentral.digicert.eu/productIdstringOne of the DigiCert product identifier an exhaustive list can be found here: https://dev.digicert.com/en/certcentral-apis/services-api/glossary.html#product-identifiers
caCertIdstring | nullretryIntervalstring | nullskipApprovalboolean | nullcustomConnectorDataMappingobject | nullproperty name*stringadditional propertytimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueejbcaendPointstring requiredprofilestring requiredcaNamestring requiredauthenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
eeProfilestring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueentrustloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
certTypestring requiredrequesterDefaultMailstring requiredauthenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
requesterNamestring | nullrequesterPhonestring | nullcertLifetimestring | nullclientIdinteger | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueidcaendPointstring requiredprofilestring requiredauthenticationCredentialsstring | null requiredName of the certificate credentials to use to authenticate on the PKI
timeoutstring | null (FiniteDuration)proxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueintegratedcryptoTypestring requiredEnumlegacyhybridpqccaKeyobject | null (SecretString)valuestring | nullValue of the secret that will be passed to Horizon
caCertstring | nullcrlPathstring | nullcrlLifetimestring | nullcertTypestring | nullsignAlgstring | nullcrtLifetimestring | nullcrtBackDatestring | nullcheckPopboolean | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuefcmsendPointstring requiredapiCredentialsstring requiredName of the raw credentials containing the API key to authenticate on the PKI
templateIdinteger requireddefaultOwnerstring requiredauthenticationDomainIdinteger requireddeleteOnRevokeboolean requiredownerGroupsstring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuegsatlasloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
authenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
hashAlgorithmstring | nullcertificateUsagestring | nullretryIntervalstring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuegsmsslendpointTypestring requiredprofilestring requiredloginCredentialsstring requiredName of the password credentials to use for technical account on the PKI
domainIdstring requiredcertificateValidityinteger | nulldefaultEmailstring | nulldefaultPhonestring | nullretryIntervalstring | nulltimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueotpkiendPointstring requiredprofilestring requiredauthenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
emailMapstring | nullsanDnsMapstring | nullsanEmailMapstring | nulluidMapstring | nullzonestring | nullzoneLabelstring | nullThe name of the label where the zone value is stored on an enrolled certificate
timeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuemetapkiendPointstring requiredMetaPKI base endpoint
endPointIssuingCAstring requiredCertificate authority of the endpoint
profilestring requiredworkflowstring | null requiredprofilClestring | null requiredvalidDaysstring | null (FiniteDuration)formPorteurNamestring | nullauthenticationCredentialsstring | nullName of the certificate credentials to use to authenticate on the PKI
timeoutstring | null (FiniteDuration)proxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuenameshieldapiCredentialsstring requiredName of the api-key credentials to use to authenticate on the PKI
environmentstring requiredThe testing environment will use https://ote-api.nameshield.net endpoint and the production will use https://api.nameshield.net
EnumproductiontestingorganizationIdstring requiredproductIdstring requiredcustomerIdstring requiredtimeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuenexuscmendPointstring requiredendPointIssuingCAstring requiredprocedurestring requiredauthenticationCredentialsstring requiredName of the certificate credentials to use to authenticate on the PKI
timeoutstring | nullproxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValuesectigologinCredentialsstring requiredName of the password credentials to use to authenticate on the PKI
customerUristring requiredorganizationIdinteger requiredprofilestring requiredretryIntervalstring | null (FiniteDuration)validDaysstring | null (FiniteDuration)endpointTypestringEnumeuharddefaulttimeoutstring | null (FiniteDuration)proxystring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
_idstring (Internal ID) requiredObject internal ID
namestring requiredtypestring requiredValueswisssignmpkiCredentialsstring requiredName of the password credentials to use to authenticate on the PKI. It should contains the mpkiId as the login and the apiKey as password.
endPointstring requiredSwiss base endpoint
productUuidstring requiredThe product Uuid that need to be retrieved from the swiss sign api's (
/v2/clients) proxystring | nulltimeoutstring | nullqueuestring | nullstatusobject | null (PKI Connector status)The status of a pki connector
lastCheckinteger requiredThe date, in milliseconds since the epoch, of the last time the pki connector health check was ran.
statusstring requiredThe status of the pki connector connection. The 'unknown' status means that the healthcheck is not available.
Enumsuccessfailureunknownrunningmessagestring | nullA meaningful message about the result of the health check (in case of error)
-
400 Bad Request
application/problem+jsonerrorstring requiredThe error code of the problem
ValuePKI-CONNECTOR-002messagestring requiredA short, human-readable summary of the problem type
ValueInvalid PKI Connectortitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInvalid PKI Connectordetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
-
401 Unauthorized request
application/problem+jsonerrorstring requiredThe error code of the problem
ValueSEC-AUTH-001messagestring requiredA short, human-readable summary of the problem type
ValueUnexpected Errortitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueUnexpected Errordetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-002messagestring requiredA short, human-readable summary of the problem type
ValueInvalid credentials or principal does not existtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInvalid credentials or principal does not existdetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-003messagestring requiredA short, human-readable summary of the problem type
ValueCertificate is not trustedtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueCertificate is not trusteddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-004messagestring requiredA short, human-readable summary of the problem type
ValueCertificate is expiredtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueCertificate is expireddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-005messagestring requiredA short, human-readable summary of the problem type
ValueCertificate is revokedtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueCertificate is revokeddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-006messagestring requiredA short, human-readable summary of the problem type
ValuePrincipal not authenticatedtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValuePrincipal not authenticateddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-007messagestring requiredA short, human-readable summary of the problem type
ValueInvalid Identity Providertitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInvalid Identity Providerdetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-008messagestring requiredA short, human-readable summary of the problem type
ValueInvalid redirect pathtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInvalid redirect pathdetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-009messagestring requiredA short, human-readable summary of the problem type
ValuePrincipal not authenticated or authentication expiredtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValuePrincipal not authenticated or authentication expireddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
-
403 Forbidden action
application/problem+jsonerrorstring requiredThe error code of the problem
ValueSEC-PERM-001messagestring requiredA short, human-readable summary of the problem type
ValueInsufficient privilegestitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInsufficient privilegesdetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueLIC-002messagestring requiredA short, human-readable summary of the problem type
ValueInvalid Licensetitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueInvalid Licensedetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueLIC-004messagestring requiredA short, human-readable summary of the problem type
ValueExpired Licensetitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueExpired Licensedetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
-
404 Not Found
application/problem+jsonerrorstring requiredThe error code of the problem
ValuePKI-CONNECTOR-003messagestring requiredA short, human-readable summary of the problem type
ValuePKI Connector not foundtitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValuePKI Connector not founddetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
-
500 Internal Server error
application/problem+jsonerrorstring requiredThe error code of the problem
ValuePKI-CONNECTOR-001messagestring requiredA short, human-readable summary of the problem type
ValueUnexpected errortitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueUnexpected errordetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueSEC-AUTH-001messagestring requiredA short, human-readable summary of the problem type
ValueUnexpected Errortitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueUnexpected Errordetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807
errorstring requiredThe error code of the problem
ValueLIC-001messagestring requiredA short, human-readable summary of the problem type
ValueUnexpected errortitlestring requiredA short, human-readable summary of the problem type. In compliance with RFC7807
ValueUnexpected errordetailstring | nullA human-readable explanation specific to this occurrence of the problem. In compliance with RFC7807