REST API - create

vcenter trust vc trusts: create spec

The create_spec structure contains information to create a trust. Warning: This structure is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.

Representation:

JSON
LEGACY JSON

{
    "domain" : "string",
    "label" : "string",
    "signing_cert_chains" : [
        {
            "cert_chain" : [
                "string",
                "string"
            ]
        },
        {
            "cert_chain" : [
                "string",
                "string"
            ]
        }
    ],
    "upn_suffixes" : [
        "string",
        "string"
    ],
    "type" : "string",
    "group_map" : {
        "<string>" : [
            "string",
            "string"
        ]
    }
}

{
    "domain" : "string",
    "label" : "string",
    "signing_cert_chains" : [
        {
            "cert_chain" : [
                "string",
                "string"
            ]
        },
        {
            "cert_chain" : [
                "string",
                "string"
            ]
        }
    ],
    "upn_suffixes" : [
        "string",
        "string"
    ],
    "type" : "string",
    "group_map" : [
        {
            "value" : [
                "string",
                "string"
            ],
            "key" : "string"
        }
    ]
}

Attributes:

Name	Type	Description
Required
-.domain	string	Domain identifier. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
-.label	string	Label of the trust. A non-unique, user-readable label. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
-.signing_cert_chains	x509_cert_chain[]	List of signing certificate chains. At least one cert chain is required. Private key is not included. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
-.upn_suffixes	string[]	List of the UPN suffixes used in this trust relationship. Must contain at least one entry for the trusted domain. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
Optional
-.type	string	Type of trust, used to distinguish between different types of domains such as cloud or on-prem. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented. Optional. Type will only be added if provided.
-.group_map	object	Maps a group in an existing token to a list of local SSO groups in the local domain. Map key is expected to be in UPN/email address format. Example is group name and domain name separated by '@': @ Map value is the name of an existing group. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented. Optional. group map will only be added if provided.

Attributes:

Name	Type	Description
Required
domain	string	Domain identifier. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
label	string	Label of the trust. A non-unique, user-readable label. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
signing_cert_chains	x509_cert_chain[]	List of signing certificate chains. At least one cert chain is required. Private key is not included. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
upn_suffixes	string[]	List of the UPN suffixes used in this trust relationship. Must contain at least one entry for the trusted domain. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented.
Optional
type	string	Type of trust, used to distinguish between different types of domains such as cloud or on-prem. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented. Optional. Type will only be added if provided.
group_map	list	Maps a group in an existing token to a list of local SSO groups in the local domain. Map key is expected to be in UPN/email address format. Example is group name and domain name separated by '@': @ Map value is the name of an existing group. Warning: This attribute is part of a new feature in development. It may be changed at any time and may not have all supported functionality implemented. Optional. group map will only be added if provided.