Layer7 API Management

  • Private Community

  • 1.  Manage Certificates in SSG

    Posted Oct 26, 2016 06:25 AM

    Hi All,

     

    We have added few certificates in Layer 7 policy manager in Manage Certificates.Is it possible to see these certificates in our gateway(i.e. in ssg) not in policy manager.

     

    Ideally we wish to write a script for certificates expiry date.So looking for where these are stored in ssg once we added in policy manager.

     

    Regards,

    Suneel



  • 2.  Re: Manage Certificates in SSG

    Broadcom Employee
    Posted Oct 26, 2016 11:25 AM

    Hi Suneel,

     

    I believe these are stored as part of the trused_cert table in the SSG database. It it not recommended to interact directly with the database in this manner. You may wish to review the below article regarding email alerts for expiring certificates.

     

    Generating email alerts for expiring trusted certificates

    Knowledge Base Articles 

     

    Regards,

    Joe



  • 3.  Re: Manage Certificates in SSG
    Best Answer

    Broadcom Employee
    Posted Oct 26, 2016 11:38 AM

    Suneel,

     

    You can also grab information through the Restman service for certificates. Excerpt from the Restman online gateway documentations:

     

    List

    Returns a list of certificates. Can optionally sort the resulting list in ascending or descending order. Other params given will be used as search values.

    Examples:

    /restman/1.0/trustedCertificates?name=MyCertificate

    Returns certificates with name "MyCertificate".

    If a parameter is not a valid search value a bad request error will be returned.

    Request
    GET 1.0/trustedCertificates
    Query Parameters
    ParamTypeDefaultSinceDescription
    sort
    • id
    • name
    		Key to sort the list by.
    order
    • asc
    • desc
    		Sort order for the list; 'asc'=ascending, 'desc'=descending; defaults to ascending if not specified
    namestringName filter
    securityZone.idstringSecurity zone ID filter
    Response
    Body
    A list of certificates. If the list is empty then no certificates were found.
    Elementl7:List

    Sincerely,

     

    Stephen Hughes

    Director, CA Support