See below for the capabilities supported by EJB Certificate Authorities (EJBCAs).
enrollments
See below for the enrollment-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
EnrollmentByCSR | Indicates that the CA supports certificate signing requests. | /v1/certificate-authorities/{caId}/enrollments |
|
X509CertificateResponse | Certificate can be returned in X509 form. | /v1/certificate-authorities/{caId}/enrollments |
|
PKCS12Response | Certificate (and key) can be returned in PKCS#12 form. | /v1/certificate-authorities/{caId}/enrollments |
|
SANInCSR | Subject alternative names in CSR are processed. | /v1/certificate-authorities/{caId}/enrollments |
|
SANInRequest | Subject alternative names in enrollment request are processed. | /v1/certificate-authorities/{caId}/enrollments |
|
SubjectNameInRequest | Supply subject name parameters in request to construct a subject DNin the supplied order. This applies to requests with CSR. | /v1/certificate-authorities/{caId}/enrollments |
|
CAGeneratedKey | Key can be generated by the CA and returned to client(P12).Individual profiles may prevent keys from being generated by the CA. | /v1/certificate-authorities/{caId}/enrollments |
|
KeyInRequest | Client can send a key to be used for the enrollment in the enrollment request. | /v1/certificate-authorities/{caId}/enrollments |
|
CAGeneratedKeyBackup | Key backup can be requested if the CA generated the key. | /v1/certificate-authorities/{caId}/enrollments |
|
ClientGeneratedKeyBackup | Key backup can be requested if the client supplies the key during the request. | /v1/certificate-authorities/{caId}/enrollments |
|
ExtensionInCSR | Extension request in the CSR will be processed. | /v1/certificate-authorities/{caId}/enrollments |
|
ExtensionInRequest | Extension request in enrollment request will be processed. | /v1/certificate-authorities/{caId}/enrollments |
|
ValidateProofOfPossesion | Validate proof of procession if requested. | /v1/certificate-authorities/{caId}/enrollments |
|
ValidityPeriodInRequest | A validity period can be supplied in the request | /v1/certificate-authorities/{caId}/enrollments |
|
certificates
See below for the certificate-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
SearchBySerial | Lookup certificate by serial number. | /v1/certificate-authorities/{caId}/certificates/{serial} |
|
CertificateAction | Supported actions on a certificate. | /v1/certificate-authorities/{caId}/certificates/{serial}/actions |
|
CertificateRevocationReason | Supported revocation reasons for the certificate RevokeAction. | /v1/certificate-authorities/{caId}/certificates/{serial}/actions |
|
certificate-events
See below for the certificate-event-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
CertificateEvents | Supports certificate events. | /v1/certificate-authorities/{caId}/certificate-events |
|
MaxCertificateEventsPageSize | Maximum Size of content in Certificate Events Page | /v1/certificate-authorities/{caId}/certificate-events |
|
domains
See below for the domain-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
VerificationMethod | Available verification methods. | /v1/certificate-authorities/{caId}/domains/{domain} |
|
VerificationStatus | Possible domain verification status states. | /v1/certificate-authorities/{caId}/domains/{domain} |
|
Filter | Possible domain query filters | /v1/certificate-authorities/{caId}/domains |
|
status
See below for the status-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
CAStatus | Return whether the CA is up or down. | /v1/certificate-authorities/{caId}/status |
|
ca-properties
See below for the CA property-supported capabilities.
Name | Description | Endpoint | Supported |
|---|---|---|---|
CAPropertiesRetrieval | Retrieves CA properties | /v1/certificate-authorities/{caId}/properties |
|