light-mode-image
Learn
MATTR VII PlatformCertificates

Create a DTS root CA certificate

Creates a DTS root CA certificate which is used to sign DTS signer certificates.

  • A maximum of three DTS root CA certificates can be created per tenant.

Analytics Events

ECOSYSTEM_DTS_CA_CERTIFICATE_CREATE_STARTECOSYSTEM_DTS_CA_CERTIFICATE_CREATE_SUCCESSECOSYSTEM_DTS_CA_CERTIFICATE_CREATE_FAIL

Roles

admindts-provider
POST/v1/ecosystems/certificates/ca

Authorization

AuthorizationBearer <token>

In: header

Request Body

commonName?string

Indicates the common name of the DTS root CA certificate. When specified, the value must be a valid PrintableString and cannot be an empty string. If not provided and a custom domain is configured and verified, the custom domain is used followed by the words DTS CA. If no custom domain is configured, the tenant subdomain is used instead.

country?string

Indicates the DTS provider's country. If not provided, a country is selected based on the region of the tenant subdomain cloud host. When specified, the value must be a valid Alpha 2 country code as per ISO 3166-1.

organisationNamestring

Indicates the organization associated with the DTS root CA certificate.

notAfter?string

Used to set the date and time when the DTS root CA certificate expires.

  • If not provided, calculated as notBefore + 20 years.
  • If not provided and notBefore is not provided, calculated as time of creation + 20 years.
  • Maximum value is 20 years from creation.
  • Must be after notBefore, if provided.
Formatdate-time
notBefore?string

Used to set the date and time when the DTS root CA certificate becomes valid and can be used to sign other intermediate certificates.

  • Must not be in the past.
  • Must be before notAfter.
Formatdate-time
certificatePemstring

DTS root CA certificate in PEM format. The certificate must be valid and not expired.

Response Body

curl -X POST "https://example.vii.au01.mattr.global/v1/ecosystems/certificates/ca" \  -H "Content-Type: application/json" \  -d '{    "organisationName": "Example Inc."  }'
{
  "id": "782f1885-c7c2-4459-8426-b6d7c111b0b1",
  "active": true,
  "certificatePem": "-----BEGIN CERTIFICATE-----\nMIIDXTCCAkWgAwIBAgIJAL5...\n-----END CERTIFICATE-----",
  "certificateFingerprint": "f6cad6e579d70b3973efa60624af731a580d1a11a7579e70f2f10f059dc86172",
  "certificateData": {
    "commonName": "example.com",
    "country": "US",
    "organisationName": "Example Inc.",
    "notAfter": "2024-10-22T00:00:00Z",
    "notBefore": "2023-10-22T00:00:00Z"
  },
  "isManaged": true
}
{
  "code": "string",
  "message": "string",
  "details": [
    {
      "value": "string",
      "msg": "Invalid value",
      "param": "id",
      "location": "body"
    }
  ]
}
{
  "code": "string",
  "message": "string",
  "details": [
    {
      "value": "string",
      "msg": "Invalid value",
      "param": "id",
      "location": "body"
    }
  ]
}
{
  "code": "string",
  "message": "string",
  "details": [
    {
      "value": "string",
      "msg": "Invalid value",
      "param": "id",
      "location": "body"
    }
  ]
}

How would you rate this page?

Retrieve ecosystem policy preview GET

Previous Page

Retrieve all DTS root CA certificates GET

Next Page