The following endpoint allows enrolling and renewing certificates.
https://{host}:{port}/{server.servlet.context-path}/v1/certificate-authorities/{caId}/enrollmentsSee the table below for a description of each field.
Field | Value |
|---|---|
{host} | The hostname or IP address of the CA Gateway host server |
{port} | The port of the CA Gateway service |
{server.servlet.context-path} | The value of the |
{caId} | The certificate authority identifier |
When using the enrollment endpoint to renew a certificate issued by a Sectigo CA, the JSON request must include the RenewalSerialNumber setting inside the properties field. For example:
{ "csr": "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", "renewal": true, "properties": { "RenewalSerialNumber": "4c56db9f8f07af1e93c66a37e041ef8e" }, "profileId": "profileA-local", "requiredFormat": { "format": "PEM" }}