Update an existing certificate profile

Body required

application/json

Certificate profile to update

_id

string required

module

string required

name

string required

enabled

boolean required

timeout

string required

pkiConnector

string required

authorizeShortName

boolean required

authorizeEmptyContact

boolean required

verifyRetryCount

integer required

verifyRetryDelay

string required

requireTermsOfService

boolean required

authorizationLevels

object (models.certificate.profile.CertificateProfileAuthorizationLevels) required

revoke

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestRevoke

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveRevoke

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

update

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestUpdate

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveUpdate

object (models.security.access.AuthorizationLevel) required

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

enroll

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

enrollApi

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestEnroll

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveEnroll

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

recover

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

recoverApi

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestRecover

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveRecover

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

migrate

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestMigrate

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveMigrate

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

renew

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

renewApi

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestRenew

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

approveRenew

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

auditRequest

object | null (models.security.access.AuthorizationLevel)

accessLevel

string required

The access level required to perform the action

Enum everyone authenticated authorized

enforcedIdentityProviders

array of objects | null (Enforced identity providers)

The different identity providers that can be enforced to perform the action

Array [

type

string required

The type of identity provider to be enforced

Enum Local OpenId X509 Pop

name

string required

The name of the identity provider to be enforced

]

requestsPolicy

object (models.request.RequestsPolicy) required

enroll

string | null

revoke

string | null

recover

string | null

update

string | null

migrate

string | null

renew

string | null

selfPermissions

object (models.certificate.profile.CertificateProfileSelfPermissions) required

selfUpdate

boolean required

selfRevoke

boolean required

selfRenew

boolean required

selfPopRenew

boolean required

selfPopRevoke

boolean required

selfPopUpdate

boolean required

selfRecover

boolean | null

cryptoPolicy

object (Certificate profile crypto policy) required

centralized

boolean required

Whether this profile supports centralized enrollment

decentralized

boolean required

Whether this profile supports decentralized enrollment

escrow

boolean required

Whether this profile will escrow the certificate private keys

defaultKeyType

string | null (Keytype)

Default key type used for centralized enrollment

Enum rsa-<size> ec-secp256r1 ec-secp384r1 ec-secp521r1 ed-Ed448 ed-Ed25519

authorizedKeyTypes

array of string | null (Keytype)

List of authorized key types for enrollment

preferredEnrollmentMode

string | null

If both centralized and decentralized enrollment are supported, this is the preferred mode

Enum centralized decentralized

p12passwordPolicy

string | null

Password policy for the P12 file

p12passwordMode

string | null

Whether the user will be required to input their PKCS#12 password upon enrollment

Enum random manual

p12storeEncryptionType

string | null

Encryption type for the P12 file

showP12PasswordOnEnroll

boolean | null

Whether the PKCS#12 password will be displayed to the user upon enrollment

showP12OnEnroll

boolean | null

Whether the PKCS#12 file will be displayed to the user upon enrollment

showP12PasswordOnRecover

boolean | null

Whether the PKCS#12 password will be displayed to the user upon recovery

showP12OnRecover

boolean | null

Whether the PKCS#12 file will be displayed to the user upon recovery

displayName

array of objects | null (LocalizedString)

Array [

lang

string required

The ISO 3166-1 (2-letters) code of the language used for the value

value

string required

The localized value

]

description

array of objects | null (LocalizedString)

Array [

lang

string required

The ISO 3166-1 (2-letters) code of the language used for the value

value

string required

The localized value

]