Package com.vmware.vim25.mo
Class HostCertificateManager
java.lang.Object
com.vmware.vim25.mo.ManagedObject
com.vmware.vim25.mo.HostCertificateManager
-
Constructor Summary
ConstructorsConstructorDescriptionHostCertificateManager(ServerConnection serverConnection, ManagedObjectReference mor) -
Method Summary
Modifier and TypeMethodDescriptiongenerateCertificateSigningRequest(boolean useIpAddressAsCommonName) Requests the server to generate a certificate-signing request (CSR) for itself.generateCertificateSigningRequest(boolean useIpAddressAsCommonName, HostCertificateManagerCertificateSpec spec) generateCertificateSigningRequestByDn(String distinguishedName) Requests the server to generate a certificate-signing request (CSR) for itself.generateCertificateSigningRequestByDn(String distinguishedName, HostCertificateManagerCertificateSpec spec) voidString[]Fetches the SSL CRLs of Certificate Authorities that are trusted.String[]Fetches the SSL certificates of Certificate Authorities that are trusted.voidnotifyAffectedServices(String[] services) voidvoidreplaceCACertificatesAndCRLs(String[] caCert) Replaces the trusted Certificate Authority (CA) certificates and Certification Revocation List (CRL) used by the server with the provided values.voidreplaceCACertificatesAndCRLs(String[] caCert, String[] caCrl) Methods inherited from class com.vmware.vim25.mo.ManagedObject
convertMors, getCurrentProperty, getDatastores, getFilter, getHosts, getManagedObject, getManagedObjects, getManagedObjects, getMOR, getNetworks, getPropertiesByPaths, getPropertyByPath, getResourcePools, getScheduledTasks, getServerConnection, getTasks, getViews, getVimService, getVms, retrieveObjectProperties, setCachedProperty, setMOR, setServerConnection, toString, waitForValues
-
Constructor Details
-
HostCertificateManager
-
-
Method Details
-
getCertificateInfo
-
generateCertificateSigningRequest
public String generateCertificateSigningRequest(boolean useIpAddressAsCommonName, HostCertificateManagerCertificateSpec spec) throws HostConfigFault, RuntimeFault, RemoteException -
generateCertificateSigningRequestByDn
public String generateCertificateSigningRequestByDn(String distinguishedName, HostCertificateManagerCertificateSpec spec) throws HostConfigFault, RuntimeFault, RemoteException -
installServerCertificate
public void installServerCertificate(String cert) throws HostConfigFault, RuntimeFault, RemoteException -
notifyAffectedServices
- Throws:
RuntimeFaultRemoteException
-
provisionServerPrivateKey
public void provisionServerPrivateKey(String key) throws HostConfigFault, RuntimeFault, RemoteException -
replaceCACertificatesAndCRLs
public void replaceCACertificatesAndCRLs(String[] caCert, String[] caCrl) throws HostConfigFault, RuntimeFault, RemoteException -
retrieveCertificateInfoList
public HostCertificateManagerCertificateInfo[] retrieveCertificateInfoList() throws RuntimeFault, RemoteException- Throws:
RuntimeFaultRemoteException
-
generateCertificateSigningRequest
public String generateCertificateSigningRequest(boolean useIpAddressAsCommonName) throws HostConfigFault, RuntimeFault, RemoteException Requests the server to generate a certificate-signing request (CSR) for itself. The CSR is then typically provided to a Certificate Authority to sign and issue the SSL certificate for the server. Use InstallServerCertificate to install this certificate.- Parameters:
useIpAddressAsCommonName- if true, use host's management IP address as CN in the CSR; otherwise use host's FQDN- Returns:
- CSR in PEM format
- Throws:
HostConfigFaultRuntimeFaultRemoteException
-
generateCertificateSigningRequestByDn
public String generateCertificateSigningRequestByDn(String distinguishedName) throws HostConfigFault, RuntimeFault, RemoteException Requests the server to generate a certificate-signing request (CSR) for itself. Alternative version similar to GenerateCertificateSigningRequest but takes a Distinguished Name (DN) as a parameter.- Parameters:
distinguishedName- DN to be used as subject in CSR.- Returns:
- CSR in PEM format
- Throws:
HostConfigFaultRuntimeFaultRemoteException
-
listCACertificateRevocationLists
public String[] listCACertificateRevocationLists() throws HostConfigFault, RuntimeFault, RemoteExceptionFetches the SSL CRLs of Certificate Authorities that are trusted.- Returns:
- SSL CRLs of trusted CAs in PEM format
- Throws:
HostConfigFaultRuntimeFaultRemoteException
-
listCACertificates
Fetches the SSL certificates of Certificate Authorities that are trusted.- Returns:
- SSL certificates of trusted CAs in PEM format
- Throws:
HostConfigFaultRuntimeFaultRemoteException
-
replaceCACertificatesAndCRLs
public void replaceCACertificatesAndCRLs(String[] caCert) throws HostConfigFault, RuntimeFault, RemoteException Replaces the trusted Certificate Authority (CA) certificates and Certification Revocation List (CRL) used by the server with the provided values. These determine whether the server can verify the identity of an external entity.- Parameters:
caCert- List of SSL certificates, in PEM format, of all CAs that should be trusted- Throws:
HostConfigFaultRuntimeFaultRemoteException
-