| Description | Get the client side SSL certificate details |
|---|
that are on the client side. | | Resource Path | / |
|---|
| URL | /mdm-admin/certificates/{serialNumber} |
|---|
| HTTP Method | GET |
|---|
| Request/Response Format | application/json |
|---|
| cURL command | | Code Block |
|---|
curl -X GET -H "Content-Type: application/json" -H "Authorization: Bearer <EMM_API_TOKEN>" -k -v https://<EMM_HOST>:<EMM_HTTPS_PORT>/mdm-admin/certificates/{serialNumber} |
- For more information on how to generate the
<EMM_API_TOKEN>, see Generating the OAuth 2.0 Access Token. - By default,
<EMM_HOST> is localhost. However, if you are using a public IP, the respective IP address or domain needs to be specified. - By default,
<EMM_HTTPS_PORT> has been set to 9443. However, if the port offset has been incremented by n, the default port value needs to be incremented by n. - Provide the serial number of the certificate that you wish to get the details of, as the
{serialNumber}.
Example: | Code Block |
|---|
curl -X GET -H "Content-Type: application/json" -H "Authorization: Bearer f4c0c1b2b4ace7040132682139d51f74" -k -v https://localhost:9443/mdm-admin/certificates/ |
|
|---|
{serialNumber}{
> GET /mdm-admin/certificates/12438035315552875234 HTTP/1.1
> Host: localhost:9443
> User-Agent: curl/7.43.0
> Accept: */*
> Content-Type: application/json
> Authorization: Bearer 19097279360bd1d19af9fd836eb46591
>
< HTTP/1.1 200 OK
< Cache-Control: private
< Expires: Thu, 01 Jan 1970 05:30:00 IST
< Date: Thu, 24 Mar 2016 09:30:53 GMT
< Content-Type: application/json
< Content-Length: 379
< Server: WSO2 Carbon Server
{"serialNumber": |
|
"124380353155528759302","tenantId": |
|
"10.10.10.24","notAfter":1487051941000,"notBefore":1455515941000,"certificateserial":12438035315552875939,"issuer":"CN\u003d10.10.10.24, OU\u003dsa, O\u003das, L\u003dasd, ST\u003dasd, C\u003dsl","subject":"CN\u003d10.10.10.23, OU\u003dsa, O\u003das, L\u003dfas, ST\u003dasd, C\u003ds4","certificateVersion":3} |
| Note |
|---|
In the output the = sign will be given as the encoded value, which is \u003d. You need to replace \u003d with the = sign after getting the certificate details. |
| Sample JSON output
Definition | | Code Block |
|---|
{
"serialNumber": "124380353155528759302",
"tenantId": -1234,
"commonName": "124380353155528759302",
"notAfter": 1487051941000,
"notBefore": 1455515941000,
"certificateserial": |
|
|---|
1243803531555287700012438035315552875939,
"issuer": "CN=10.10.10.24, OU=sa, O=as, L=asd, ST=asd, C=sl",
"subject": "CN=10.10.10. |
|
24asasdsls4",
"certificateVersion": 3
} |
|
| Anchor |
|---|
sample | sample | Sample JSON outputDefinition | Code Block |
|---|
ValueDataType |
|---|
serial | It is the unique ID that is used to identify a certificate. |
|
In device enrollment this is the common name of the client's certificate.String | pem | Convert the OpenSSL certificate to the .pem format and base 64 encode the file. | Info |
|---|
Upload the .pem file and base 64 encode it using a tool, such as the base64encode.in tool. |
| String | tenantId | | | commonName | | | notAfter | | | notBefore | | | certificateserial
| | | issuer
| | | subject
| | | certificateVersion
| | | tenantId | The ID of the tenant who adds the certificate. | Info |
|---|
The default tenant domain of WSO2 EMM is carbon.super who is-1234. For more information on adding a tenant, see Managing Tenants. |
| commonName | In mutual SSL the common name refers to the serial number of the Android device. | notAfter | The expiration date of the certificate that is inherent to the certificate. | notBefore | The date from when the certificate is valid. | certificateserial
| The serial number of the certificate. | issuer
| The identity of the authority that signs the SSL certificate. Example: CA certificate or GoDaddy. | subject
| The identity of the certificate. | certificateVersion
| The version of the certificate. |
|
|