POST
/
api
/
v1
/
pki
/
ca

Body

application/json
projectSlug
string
required

Slug of the project to create the CA in.

type
enum<string>
required

The type of CA to create.

Available options:
root,
intermediate
commonName
string
required

The common name (CN) for the CA.

organization
string
required

The organization (O) for the CA.

ou
string
required

The organization unit (OU) for the CA.

country
string
required

The country name (C) for the CA.

province
string
required

The state of province name for the CA.

locality
string
required

The locality name for the CA.

friendlyName
string

A friendly name for the CA.

notBefore
string

The date and time when the CA becomes valid in YYYY-MM-DDTHH:mm:ss.sssZ format.

notAfter
string

The date and time when the CA expires in YYYY-MM-DDTHH:mm:ss.sssZ format.

maxPathLength
number
default: -1

The maximum number of intermediate CAs that may follow this CA in the certificate / CA chain. A maxPathLength of -1 implies no path limit on the chain.

keyAlgorithm
enum<string>
default: RSA_2048

The type of public key algorithm and size, in bits, of the key pair for the CA; when you create an intermediate CA, you must use a key algorithm supported by the parent CA.

Available options:
RSA_2048,
RSA_4096,
EC_prime256v1,
EC_secp384r1
requireTemplateForIssuance
boolean
default: false

Whether or not certificates for this CA can only be issued through certificate templates.

Response

200 - application/json
ca
object
required

Was this page helpful?

ListRetrieve