NSX-T Data Center REST API

Register a name-certificate combination.

Create a principal identity with a new, unused, certificate.
The combination name and node_id needs to be unique across token-based and
certificate-based principal identities.

Request:

Method:
POST
URI Path(s):
/api/v1/trust-management/principal-identities/with-certificate
Request Headers:
n/a
Query Parameters:
n/a
Request Body:
PrincipalIdentityWithCertificate+

Example Request:

POST https://<nsx-mgr>/api/v1/trust-management/principal-identities/with-certificate { "name": "open-stack", "node_id": "node-2", "role": "enterprise_admin", "is_protected": "true", "certificate_pem" : "-----BEGIN CERTIFICATE----------END CERTIFICATE-----" }

Successful Response:

Response Code:
201 Created
Response Headers:
Content-type: application/json
Response Body:
PrincipalIdentity+

Example Response:

{ "id": "ebd3032d-728e-44d4-9914-d4f81c9972cb", "name": "open-stack", "node_id": "node-2", "role": "enterprise_admin", "is_protected": "true", "certificate_id" : "abd3032d-728e-44d4-9914-d4f81c9972cc" }

Required Permissions:

crud

Feature:

trust_principal_identities

Additional Errors: