Skip to main content

Create a certificate profile

POST 

/certificate-profiles

Create a certificate profile.

Request

Body

Created

    oneOf
    folder stringrequired

    Possible values: <= 64 characters, Value must match regular expression ^[a-zA-Z\d-_\. ]+$

    The folder in which the resource is defined

    name stringrequired

    Possible values: <= 63 characters

    The name of the certificate profile

    username_field object

    Certificate username field

    subject

    Possible values: [common-name]

    Common name

    subject_alt

    Possible values: [email]

    Email address

    domain string

    User domain

    ca_certificates object[]required

    An ordered list of CA certificates

  • Array [
  • name stringrequired

    CA certificate name

    default_ocsp_url string

    Default OCSP URL

    ocsp_verify_cert string

    OCSP verify certificate

    template_name string

    Template name/OID

  • ]
  • crl_receive_timeout integer

    Possible values: >= 1 and <= 60

    Default value: 5

    CRL receive timeout (seconds)

    ocsp_receive_timeout integer

    Possible values: >= 1 and <= 60

    Default value: 5

    OCSP receive timeout (seconds)

    cert_status_timeout integer

    Possible values: >= 1 and <= 60

    Default value: 5

    Certificate status timeout

    use_crl boolean

    Use CRL?

    use_ocsp boolean

    Use OCSP?

    block_unknown_cert boolean

    Block session if certificate status is unknown?

    block_timeout_cert boolean

    Block session if certificate status cannot be retrieved within timeout?

    block_unauthenticated_cert boolean

    Block session if the certificate was not issued to the authenticating device?

    block_expired_cert boolean

    Block sessions with expired certificates?

Responses

Created

Loading...