Search in this section
Instructions für complete automation of the certificate reissuing process. In the case of reissue, certificates with a new CSR key are reissued. The QuickSSLPremium product is used here as an example and DNS is used as authentication method.
Basics of the JSON and XML API
All important information for the use of the JSON and XML API you can find in the General API Basics and the XML API Basics and JSON API Basics.
The specific SSL objects are documented here, the SSL tasks here.
Process overview
Flow chart
Tasks names, codes and routes
Task | Code | Route |
---|---|---|
CertificatePrepareOrder | 400110 | POST /certiicate/prepareOrder |
CertificateReissue | 400102 | PUT /certificate/ {id} |
PollInfo | 0905 | GET /poll |
PollConfirm | 0906 | PUT /poll/$id |
CertificateInfo | 400104 | GET /certificate/$id |
DNS validation
DNS validation, i.e. validation by zone entry, is supported by many domain-validated certificates. To do this, für some CAs you must store a specific TXT or CNAME record in the zone belonging to the certificate name. This is checked for validity by the issuing certificate authority. If the corresponding zone is managed by InterNetX, the provisioning of the zone takes place automatically.
Preparation
Connect SSLManager to AutoDNS
For the automatic provisioning of the zone, you have to connect the SSLManager to your AutoDNS access once. In the SSL Manager go to the User Configuration and click on the menu item Connect SSL Manager to the Domain Administration System.
If necessary, you must enter the URL to your AutoDNS yourself.
You will then be redirected to the AutoDNS login page. Enter your AutoDNS credentials here to establish the connection.
Reissue a QuickSSLPremium certificate
Create DNS record and check CSR
QuickSSLPremium certificates are verified by TXT entries. A new TXT record with specific values must be stored in the zone belonging to the common name (CNAME). With the CertificatePrepareOrder task, the CSR key provided is checked for the correct bit length, for example, and the required authentication data is generated.
Example .TXT :
example.com. 300 IN TXT "201704071405295z34is5g0jjairsdu0v5opdw8512td8kixzvtaacu4ebrkry5q"
Certificate Prepare Order - Example
Certificate reissue
The task CertificateReissue starts the reissue of the certificate. You must set the same data for the order as for a CertificateCreate.
Receiving notifications
The CertificateCreate task automatically generates a request for ordering the certificate. Once the request has been processed, a notification is generated with information about the request. If the order was successful, you receive, among other things, the ID of the certificate ordered. The notification can be retrieved using the Polling and Push methods.
Inquiring certificate data
The CertificateInfo task inquires the certificate data. The data can be queried and confirmed using the ID from the Receiving Notifications step.