Sign Certificate
Sign certificate
Body
The ID of the CA to issue the certificate from
The ID of the certificate template to issue the certificate from
The ID of the PKI collection to add the certificate to
The pem-encoded CSR to sign with the CA to be used for certificate issuance
A friendly name for the certificate
The common name (CN) for the certificate
A comma-delimited list of Subject Alternative Names (SANs) for the certificate; these can be host names or email addresses.
The time to live for the certificate such as 1m, 1h, 1d, 1y, ...
The date and time when the certificate becomes valid in YYYY-MM-DDTHH:mm:ss.sssZ format
The date and time when the certificate expires in YYYY-MM-DDTHH:mm:ss.sssZ format
The key usage extension of the certificate
digitalSignature
, keyEncipherment
, nonRepudiation
, dataEncipherment
, keyAgreement
, keyCertSign
, cRLSign
, encipherOnly
, decipherOnly
The extended key usage extension of the certificate
clientAuth
, serverAuth
, codeSigning
, emailProtection
, timeStamping
, ocspSigning
Response
The issued certificate
The certificate of the issuing CA
The certificate chain of the issued certificate
The serial number of the issued certificate
Was this page helpful?