Personal tools

From HEXONET Wiki

Jump to: navigation, search
Line 103: Line 103:
 
'''Order certificate providing the domain name only'''
 
'''Order certificate providing the domain name only'''
 
<br>
 
<br>
Contact data is retrieved from WHOIS. Private key and CSR are created automatically.
+
The contact data is retrieved from WHOIS. Private key and CSR are created automatically.
 
<pre>
 
<pre>
 
[COMMAND]
 
[COMMAND]
Line 113: Line 113:
 
'''Order certificate with contact handles'''
 
'''Order certificate with contact handles'''
 
<br>
 
<br>
Private key and CSR are created automatically.
+
The private key and CSR are created automatically.
 
<pre>
 
<pre>
 
[COMMAND]
 
[COMMAND]
Line 149: Line 149:
 
sslcertclass = <CLASS>
 
sslcertclass = <CLASS>
 
domain0 = <DOMAIN>
 
domain0 = <DOMAIN>
 +
ownercontact0=<CONTACT>
 +
admincontact0=<CONTACT>
 +
techcontact0=<CONTACT>
 +
billingcontact0=<CONTACT>
 
pem0 = -----BEGIN RSA PRIVATE KEY-----
 
pem0 = -----BEGIN RSA PRIVATE KEY-----
 
pem1 = ...
 
pem1 = ...

Revision as of 10:55, 7 April 2016

New SSL API

What are the features of the new SSL API?

The new SSL API offers:

  • SSL certificate orders where no contact data has to be provided - given the domain name, we retrieve the required contact information per WHOIS call
  • SSL certificate orders where no CSR has to be provided - we can take care of this
  • SSL certificate orders where the contact data can be provided via contact handles - just like in domain commands
  • Advanced validation methods - instead of confirming emails, you can prove that you have control over a domain by a simple DNS or web content modification

How to use the new SSL API?

You can do that right away. Just make use of the new command parameters described below.



SSL certificate
COMODO_ESSENTIALSSL
COMODO_INSTANTSSL
COMODO_INSTANTSSL_PRO
COMODO_PREMIUMSSL
COMODO_PREMIUMSSL_WILDCARD
COMODO_EVSSL
COMODO_UCC
GEOTRUST_QUICKSSLPREMIUM
GEOTRUST_RAPIDSSL
GEOTRUST_RAPIDSSL_WILDCARD
SYMANTEC_SECURESITE
SYMANTEC_SECURESITEPRO
SYMANTEC_SECURESITEEV
SYMANTEC_SECURESITEPROEV
THAWTE_SSL123
THAWTE_SSLWEBSERVER
THAWTE_SSLWEBSERVEREV
THAWTE_SSLWEBSERVER_WILDCARD

All parameters 

[COMMAND]
command = CreateSSLCert
sslcertclass = <CLASS>

ownercontact0 = <CONTACT>
admincontact0 = <CONTACT>
techcontact0 = <CONTACT>
billingcontact0 = <CONTACT>
csrcontact0 = <CONTACT>

domain0 = <DOMAIN>
domain1 = <DOMAIN>
...

validation0 = EMAIL | DNSZONE | URL
validation1 = EMAIL | DNSZONE | URL
...

validationemail0 = <EMAIL>
validationemail1 = <EMAIL>
...

csr0 = -----BEGIN CERTIFICATE REQUEST-----
csr1 = ...
...

pem0 = -----BEGIN RSA PRIVATE KEY-----
pem1 = ...
...


[RESPONSE]
CODE=200
DESCRIPTION=Command completed successfully
PROPERTY[SSLCERTID][0]=<SSLCERTID>


Order certificate providing the domain name only
The contact data is retrieved from WHOIS. Private key and CSR are created automatically. 

[COMMAND]
command = CreateSSLCert
sslcertclass = <CLASS>
domain0 = <DOMAIN>


Order certificate with contact handles
The private key and CSR are created automatically. 

[COMMAND]
command = CreateSSLCert
sslcertclass = <CLASS>
domain0 = <DOMAIN>
ownercontact0=<CONTACT>
admincontact0=<CONTACT>
techcontact0=<CONTACT>
billingcontact0=<CONTACT>


Order certificate with your own CSR
The domain is retrieved from the provided CSR. 

[COMMAND]
command = CreateSSLCert
sslcertclass = <CLASS>
ownercontact0=<CONTACT>
admincontact0=<CONTACT>
techcontact0=<CONTACT>
billingcontact0=<CONTACT>
csr0 = -----BEGIN CERTIFICATE REQUEST-----
csr1 = ...
...

Order certificate with your own private key
The CSR is created automatically using the provided private key. 

[COMMAND]
command = CreateSSLCert
sslcertclass = <CLASS>
domain0 = <DOMAIN>
ownercontact0=<CONTACT>
admincontact0=<CONTACT>
techcontact0=<CONTACT>
billingcontact0=<CONTACT>
pem0 = -----BEGIN RSA PRIVATE KEY-----
pem1 = ...
...

Retrieved from "https://wiki.hexonet.net/index.php?title=New_SSL_API_Main_Page&oldid=6544"