Overview
Your system can generate and install a new self-signed SSL server certificate. The new certificate is good for five years.
Important: If the certificate you are uploading is being used to create an LDAP user federation in Keycloak, you must restart the HCI pods by using the POST /system/restart endpoint in order for the changes to take effect. This endpoint is available in the system section of the Workflow API.
API call
POST /certificates
Request body
{ "modelVersion": "string", "subjectDn": "string", "issuerDn": "string", "notBefore": "string", "notAfter": "string", "pemEncoded": "string" }
Return codes
Status code |
HTTP name |
Description |
---|---|---|
200 | OK | The certificate was uploaded successfully. |
400 | Bad Request | The request body contains an invalid entry, an invalid value for an entry, or invalid JSON. |
409 | The certificate already exists. |