Before you can order an SSL certificate from a Certificate Authority (CA), you must generate a CSR for your edge gateway.
1 |
Log in to vCloud Air as an administrator. See Log in to vCloud Air for information. |
2 |
Create a login session with vCloud Director. See Create a Session for a Virtual Data Center in a Service for information. |
3 |
Using the vCloud API, query vCloud Director for the ID of the edge gateway that requires CSR configuration. See Querying the vCloud API for information. |
1 | Submit the CSR configuration using the following request header and request body: PUT https://vchs.vmware.com/hybridity/api/gateways/gatewayId/csrs In the request header, include the OATH token and the Accept header that you obtained when creating a login session: Accept: application/json Content-Type: application/json X-Vcloud-Authorization: vcloud-auth-token In the request body, include the schema elements documented in CERTIFICATE SIGNING REQUEST (csrs). The server returns status 204 NO CONTENT in the response header. The server does not return a response body. |
2 | To self-sign the CSR, perform the following steps: |
3 | To delete a CSR from the edge gateway, submit the following request: DELETE https://vchs.vmware.com/hybridity/api/gateways/gatewayId/csrs/csrId |
Request Header – Configure a CSR
GET https://vchs.vmware.com/hybridity/api/gateways/gw-5/csrs Accept: application/json Content-Type: application/json X-Vcloud-Authorization: "d6eFLOqQYfuEn2MJTp7BQ2ISEO+ZYaEgTcqBy8wZQ6js="
Request Body – Configure a CSR
{ "csrs": [ { "objectId": "Csr-250c5966-9921-3b5a-a9f3-89b2ab29f449", "objectTypeName": "Csr", "vsmUuid": "42189888-BB1C-0C31-1CE4-62FE48217B1D", "nodeId": "524aad69-5f44-4bb8-8a2c-7786331de145", "revision": 1, "type": { "name": "Csr" }, "name": "sample_company.com", "description": "", "scope": { "id": "0d9c4d16-1372-4d14-8429-807ecbbeeaa6", "objectTypeName": "Edge", "name": "Sample12-Gateway6.2.1" }, "clientHandle": "", "extendedAttributes": [], "isUniversal": false, "universalRevision": 0, "subject": { "attributes": [ { "key": "CN", "value": "sample_company.com" }, { "key": "O", "value": "sample" }, { "key": "OU", "value": "Eng" }, { "key": "L", "value": "PA" }, { "key": "ST", "value": "CA" }, { "key": "C", "value": "US" } ] }, "algorithm": "RSA", "keySize": "2048", "cn": "vmware.com", "pemEncoding": "-----BEGIN CERTIFICATE REQUEST-----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\n34g=\n-----END CERTIFICATE REQUEST-----\n" } ] }