/generate-ca

post

https://api.akeyless.io/generate-ca

Body Params

alg

string

allowed-domains

string

required

A list of the allowed domains that clients can request to be included in the certificate (in a comma-delimited list)

delete_protection

string

Protection from accidental deletion of this object [true/false]

extended-key-usage

string

Defaults to serverauth,clientauth

A comma sepereted list of extended key usage for the intermediate (serverauth / clientauth / codesigning)

json

boolean

Defaults to false

Set output format to JSON

key-type

string

max-path-len

int64

Defaults to 1

The maximum number of intermediate certificates that can appear in a certification path

pki-chain-name

string

required

PKI chain name

protection-key-name

string

The name of a key that used to encrypt the secrets values (if empty, the account default protectionKey key will be used)

split-level

int64

Defaults to 3

The number of fragments that the item will be split into

token

string

Authentication token (see /auth and /configure)

ttl

string

required

The maximum requested Time To Live for issued certificate by default in seconds, supported formats are s,m,h,d

uid-token

string

The universal identity token, Required only for universal_identity authentication

Responses

Language

Response

Click Try It! to start a request and see the response here! Or choose an example:

application/json

200generateCAResponse wraps response body.

defaulterrorResponse wraps any error to return it as a JSON object with one "error" field.