Crypto Manager Kmip Generate Client Csr

Generate a certificate signing request with its private key.

This generates a CSR request as well as its private key. The private key will not be returned to caller for security protection. If this method is called again, the CSR and private key generated in the new invocation will overwrite the old ones. After the CSR is signed by KMS into a certificate, it should be updated by calling UpdateKmsSignedCsrClientCert. The generated CSR can be later retrieved by calling RetrieveClientCsr.

Required privileges: Cryptographer.ManageKeyServers

Request

URI

POST

https://{vcenter-host}/sdk/vim25/{release}/CryptoManagerKmip/{moId}/GenerateClientCsr

COPY

Path Parameters

string

moId

Required

The unique identifier for the managed object to which the method attaches; the serialized managed object reference for a request has the form moType/moId, in this case CryptoManagerKmip/{moId}.

string

release

Required

The vSphere release schema. The current specification covers vSphere 8.0.2.0 APIs.

Request Body

GenerateClientCsrRequestType of type(s) application/json

Required

{
    "cluster": {
        "_typeName": "string",
        "id": "string"
    },
    "request": {
        "_typeName": "string",
        "commonName": "string",
        "organization": "string",
        "organizationUnit": "string",
        "locality": "string",
        "state": "string",
        "country": "string",
        "email": "string"
    }
}

KeyProviderId

cluster

Required

Data Object representing a crypto key provider's unique identifier.

CryptoManagerKmipCertSignRequest

request

Optional

Since: vSphere API Release 8.0.1.0

Authentication

This operation uses the following authentication methods.

Session

Responses