Certificate

Invoke the get-api-ca-cert operation

Retrieve the CA certificate used to sign the API server's TLS certificate. Clients can use this to verify the API server's identity without prior knowledge of the CA.

Responses

200

400

Bad Request

401

Unauthorized

403

Forbidden

404

Not Found

503

Service Unavailable (strongbox sealed)

post/v1/get-api-ca-cert

Response samples

cert: |
  -----BEGIN CERTIFICATE-----
  MIICGjCCAcCgAwIBAgITAOhCghMs02nt/Et/U6tlNKRbzDAKBggqhkjOPQQDAjBj
  MRgwFgYDVQQDEw9BdmFzc2EgQVBJIHJvb3QxEjAQBgNVBAcTCVN0b2NraG9sbTEL
  MAkGA1UEBhMCU0UxDzANBgNVBAoTBkF2YXNzYTEVMBMGA1UECxMMZGlzdHJpYnV0
  aW9uMCIYDzIwMjExMjMwMTQxMzQ4WhgPMjAyNTA1MTAxNzQ5NDhaMGMxGDAWBgNV
  BAMTD0F2YXNzYSBBUEkgcm9vdDESMBAGA1UEBxMJU3RvY2tob2xtMQswCQYDVQQG
  EwJTRTEPMA0GA1UEChMGQXZhc3NhMRUwEwYDVQQLEwxkaXN0cmlidXRpb24wWTAT
  BgcqhkjOPQIBBggqhkjOPQMBBwNCAAT7XREAgO0C2o/akCa9yFGViGoJi7oL+YLT
  Zr0QN5mu+6ymkYOjZAC0laQXv1zGe9W3X6eM8FwdmwP7wAGrzFuQo08wTTAOBgNV
  HQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBATAnBgNVHR8EIDAeMBygGqAY
  hhZodHRwOi8vY3JsLmF2YXNzYS5uZXQvMAoGCCqGSM49BAMCA0gAMEUCIBjoTpxR
  oc+ycvTOg3SriC38o6sKQeY+G4KeqU72wR8DAiEAuBDRyrZK1tiTyL5+dzcf2rOc
  XWQ9mlueeqeDsCzNsYk=
  -----END CERTIFICATE-----

➔ Next to Create Root Token