This product(
cas/2020-06-30) OpenAPI adopts RPC Signature style. See signature details in Description of the signature mechanism. We have packaged SDKs for common programming languages for developers. Developers can directly call the OpenAPI of this product by downloading the SDK without paying attention to the technical details. If the existing SDK cannot meet the usage requirements, you can connect through the signature mechanism. It will take about 5 working days. Therefore, it is recommended to join our DingTalk service group (11370001915) and sign under the guidance of experts. Before using the API, you need to prepare your identity account and access key (AccessKey) to effectively access the API through client tools (SDK, CLI, etc.). For details see getAccessKey.
Private CA certificates
| API | Title | Description |
|---|---|---|
| UpdateCACertificateStatus | UpdateCACertificateStatus | Changes the status of a root certificate authority (CA) certificate or an intermediate CA certificate from ISSUE to REVOKE. |
| DescribeCACertificateCount | DescribeCACertificateCount | Queries the number of certificate authority (CA) certificates that you create. |
| DescribeCACertificate | DescribeCACertificate | Queries the details about a root certificate authority (CA) certificate or an intermediate CA certificate. |
| DescribeCACertificateList | DescribeCACertificateList | Queries the details about all root certificate authority (CA) certificates and intermediate CA certificates. |
| CreateSubCACertificate | CreateSubCACertificate | Creates an intermediate certificate authority (CA) certificate. |
| CreateRootCACertificate | CreateRootCACertificate | Creates a root certificate authority (CA) certificate. |
| GetCAInstanceStatus | GetCAInstanceStatus | Queries the status information about a private root certificate authority (CA) instance or a private intermediate CA instance that you purchase by using the Certificate Management Service console. |
Client certificates and server certificates
| API | Title | Description |
|---|---|---|
| CreateCustomCertificate | CreateCustomCertificate | Issues a certificate based on the specified key usage, extended key usage, and name and alias of the entity that uses the certificate. |
| CreateClientCertificate | CreateClientCertificate | Issues a client certificate by using a system-generated certificate signing request (CSR) file. |
| CreateClientCertificateWithCsr | Issues a client certificate by using a custom certificate signing request (CSR) file. | Issues a client certificate by using a custom certificate signing request (CSR) file. |
| CreateRevokeClientCertificate | CreateRevokeClientCertificate | Revokes a client certificate or a server certificate. |
| CreateServerCertificate | Issues a server certificate by using a system-generated certificate signing request (CSR) file. | Issues a server certificate by using a system-generated certificate signing request (CSR) file. |
| CreateServerCertificateWithCsr | Issues a server certificate by using a custom certificate signing request (CSR) file. | Issues a server certificate by using a custom certificate signing request (CSR) file. |
| DeleteClientCertificate | DeleteClientCertificate | Deletes a client certificate or a server certificate that is revoked. |
| DescribeCertificatePrivateKey | DescribeCertificatePrivateKey | Queries the encrypted private key of a client certificate or a server certificate. |
| DescribeClientCertificate | DescribeClientCertificate | Queries the details about a client certificate or a server certificate by using the unique identifier of the certificate. |
| DescribeClientCertificateStatus | DescribeClientCertificateStatus | Queries the status information about client certificates and server certificates by using the unique identifiers of the certificates. |
| ListClientCertificate | ListClientCertificate | Queries the details about all client certificates and server certificates. |
| ListRevokeCertificate | ListRevokeCertificate | Queries the details about all client certificates and server certificates that are revoked. |