Rotate Certificates
Rotates all of the non-configurable leaf certificates.
The regenerated certificates will be signed by the current active CA. An Apply Changes is necessary to distribute the certificates to any deployed VMs.
This is used during both a non-configurable leaf certificate rotation and during a Certificate Authority rotation.
- If you are doing a non-configurable leaf certificate rotation, see Rotating Non-Configurable Leaf Certificates for more details.
- If you are doing a CA rotation, see Step 4 of Rotating CAs and Leaf Certificates for more details.
Request
URI
POST
https://{api_host}/api/v0/certificate_authorities/active/regenerate
COPY
Responses
200
OK
Returns RegeneratedLeafCertificateRotationStatus of type(s) application/json
{
"certificates": {
"regenerated": [
{
"location": "string",
"product_guid": "string",
"property_reference": "string",
"variable_path": "string",
"reason": "string"
}
],
"excluded": [
{
"location": "string",
"product_guid": "string",
"property_reference": "string",
"variable_path": "string",
"reason": "string"
}
],
"regenerate_failed": [
{
"location": "string",
"product_guid": "string",
"property_reference": "string",
"variable_path": "string",
"reason": "string"
}
]
}
}
object
certificates
Optional
certificates
422
Unprocessable Entity
Returns SafetyViolations of type(s) application/json
"SafetyViolations Object"
string
error
Optional
error
array of safety_violations
safety_violations
Optional
safety_violations
Code Samples
COPY
curl -X POST -H 'Authorization: <value>' https://{api_host}/api/v0/certificate_authorities/active/regenerate