Vcenter CertificateManagement Vcenter Tls ReplaceSpec
The Vcenter CertificateManagement Vcenter Tls ReplaceSpec schema contains information to generate a Private Key , CSR and hence VMCA signed machine SSL.
This schema was added in vSphere API 6.7.2.
{
"key_size": 0,
"common_name": "string",
"organization": "string",
"organization_unit": "string",
"locality": "string",
"state_or_province": "string",
"country": "string",
"email_address": "string",
"subject_alt_name": [
"string"
]
}The size of the key to be used for public and private key generation.
This property was added in vSphere API 6.7.2.
If missing or null the key size will be '3072'.
The common name of the host for which certificate is generated
This property was added in vSphere API 6.7.2.
If missing or null will default to PNID of host.
Organization field in certificate subject
This property was added in vSphere API 6.7.2.
Organization unit field in certificate subject.
CA Browser forum announced that "CAs MUST NOT include the organizationalUnitName field". So OU is no longer needed and an empty string should be used to leave it unset.
This property was added in vSphere API 6.7.2.
Locality field in certificate subject
This property was added in vSphere API 6.7.2.
State field in certificate subject
This property was added in vSphere API 6.7.2.
Country field in certificate subject
This property was added in vSphere API 6.7.2.
Email field in Certificate extensions
This property was added in vSphere API 6.7.2.
SubjectAltName is list of Dns Names and Ip addresses
This property was added in vSphere API 6.7.2.
If missing or null PNID of host will be used as IPAddress or Hostname for certificate generation .