Vcenter CertificateManagement Vcenter TlsCsr Spec

Vcenter CertificateManagement Vcenter TlsCsr Spec
Vcenter CertificateManagement Vcenter TlsCsr Spec

The Vcenter CertificateManagement Vcenter TlsCsr Spec schema contains information to generate a Private Key and CSR.

This schema was added in vSphere API 6.7.2.

JSON Example
{
    "key_size": 0,
    "common_name": "string",
    "organization": "string",
    "organization_unit": "string",
    "locality": "string",
    "state_or_province": "string",
    "country": "string",
    "email_address": "string",
    "subject_alt_name": [
        "string"
    ]
}
integer As int64 As int64
key_size
Optional

The size of the key to be used for public and private key generation.

This property was added in vSphere API 6.7.2.

If missing or null, the key size will be 3072 bits.

string
common_name
Optional

Common name field in certificate subject.

This property was added in vSphere API 6.7.2.

If missing or null, the common name will be the PNID.

string
organization
Required

Organization field in certificate subject

This property was added in vSphere API 6.7.2.

string
organization_unit
Required

Organization unit field in certificate subject.

CA Browser forum announced that "CAs MUST NOT include the organizationalUnitName field". So OU is no longer needed and an empty string should be used to leave it unset.

This property was added in vSphere API 6.7.2.

string
locality
Required

Locality field in certificate subject

This property was added in vSphere API 6.7.2.

string
state_or_province
Required

State field in certificate subject

This property was added in vSphere API 6.7.2.

string
country
Required

Country field in certificate subject

This property was added in vSphere API 6.7.2.

string
email_address
Required

Email field in Certificate extensions

This property was added in vSphere API 6.7.2.

array of string
subject_alt_name
Optional

Subject Alternative Name field is list of Dns Names and Ip addresses.

This property was added in vSphere API 6.7.2.

If missing or null, the subject alternative name will contain the PNID.