NSX-T Data Center REST API

Fetch the server certificate chain of a TLS service endpoint

Attempt to connect to an TLS service endpoint and retrieve the server certificate chain it presents.

Request:

Method:

POST

URI Path(s):

/api/v1/trust-management/certificates?action=fetch_peer_certificate_chain

Request Headers:

n/a

Query Parameters:

n/a

Request Body:

TlsServiceEndpoint+

Name	Description	Type	Notes
host	Hostname or IP of the endpoint The hostname or IP address of the TLS service endpoint.	string	Format: hostname-or-ip
port	TCP port number The TCP port number of the endpoint.	int	Minimum: 0 Maximum: 65535

Example Request:

{ "host": "WIN-228JFP8GGG6.airius.com", "port": 443 }

Successful Response:

Response Code:

200 OK

Response Headers:

Content-type: application/json

Response Body:

PeerCertificateChain+

Name	Description	Type	Notes
details	List of X509Certificates.	array of X509Certificate	Readonly
pem_encoded	PEM encoded certificate data.	string	Required

Example Response:

{ "pem_encoded" : "-----BEGIN CERTIFICATE----- ... -----END CERTIFICATE-----", "details" : [ { "subject_cn" : "WIN-228JFP8GGG6.airius.com", "issuer_cn" : "airius-WIN-228JFP8GGG6-CA", "serial_number" : "468315649199501824227166832041710849173225477", "signature_algorithm" : "SHA256WITHRSA", "signature" : "77 ... a9", "not_before" : 1637235550000, "not_after" : 1668771550000, "issuer" : "CN=airius-WIN-228JFP8GGG6-CA,DC=airius,DC=com", "subject" : "CN=WIN-228JFP8GGG6.airius.com", "public_key_algo" : "RSA", "public_key_length" : 2048, "rsa_public_key_modulus" : "00 ... 65", "rsa_public_key_exponent" : "10001", "sha_256_thumbprint" : "f782461bad47c9ef28f32d6b499e4d139a7719fe7e505865978bbc960dec5a46" } ] }

NSX-T Data Center REST API

Fetch the server certificate chain of a TLS service endpoint

Request:

TlsServiceEndpoint (schema)

Example Request:

Successful Response:

PeerCertificateChain (schema)

Example Response:

Required Permissions:

Feature:

Additional Errors: