When using the CA actions endpoint to renew a certificate issued by a Sectigo CA, the JSON request must include the action.properties.csr field. For example:
{ "action": { "comment": "Test", "properties": { "csr": "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" }, "type": "RenewAction" }} See below for a parameter reference.
Parameter names are case sensitive.
action.comment
A descriptive text on the requested action.
Mandatory: No.
action.properties.csr
The base64 encoding of a certificate request.
Mandatory: When requesting or enewing a certificate for a client‑generated key pair and CSR.
action.type
The type of action requested to the endpoint.
Endpoint | Value | Action |
|---|---|---|
CA actions | RenewAction | Renew a certificate |
CA actions | RevokeAction | Permanently invalidate a certificate |
CA domain actions | ReverifyDomainAction | Reverify a previously validated domain because the prior validation expired, failed, or must be refreshed to meet CA/Browser Forum or GlobalSign requirements. |
Mandatory: Yes.