Creating a new client certificate

Content Intelligence Administration Guide

Version
3.0.x
File Size
465 KB
Audience
anonymous
Part Number
MK-HCI000-19

Overview

Your system can generate and install a new self-signed SSL server certificate. The new certificate is good for five years.

Important: If the certificate you are uploading is being used to create an LDAP user federation in Keycloak, you must restart the HCI pods by using the POST /system/restart endpoint in order for the changes to take effect. This endpoint is available in the system section of the Workflow API.

API call

POST /certificates

Request body

{
  "modelVersion": "string",
  "subjectDn": "string",
  "issuerDn": "string",
  "notBefore": "string",
  "notAfter": "string",
  "pemEncoded": "string"
}

Return codes

Status code

HTTP name

Description

200 OK The certificate was uploaded successfully.
400 Bad Request The request body contains an invalid entry, an invalid value for an entry, or invalid JSON.
409   The certificate already exists.