Skip to content

sslservice_sslcertkey_binding

Binding object showing the sslcertkey that can be bound to sslservice.

Properties

(click to see Operations)

NameData TypePermissionsDescription
ca<Boolean>Read-writeCA certificate.
crlcheck<String>Read-writeThe state of the CRL check parameter. (Mandatory/Optional).
Possible values = Mandatory, Optional
servicename<String>Read-writeName of the SSL service for which to set advanced configuration.
Minimum length = 1
certkeyname<String>Read-writeThe certificate key pair binding.
skipcaname<Boolean>Read-writeThe flag is used to indicate whether this particular CA certificate's CA_Name needs to be sent to the SSL client while requesting for client certificate in a SSL handshake.
snicert<Boolean>Read-writeThe name of the CertKey. Use this option to bind Certkey(s) which will be used in SNI processing.
ocspcheck<String>Read-writeRule to use for the OCSP responder associated with the CA certificate during client authentication. If MANDATORY is specified, deny all SSL clients if the OCSP check fails because of connectivity issues with the remote OCSP server, or any other reason that prevents the OCSP check. With the OPTIONAL setting, allow SSL clients even if the OCSP check fails except when the client certificate is revoked.
Possible values = Mandatory, Optional
cleartextport<Integer>Read-onlyThe clearTextPort settings.
Minimum value = 0
Maximum value = 65534
Range 1 - 65535
* in CLI is represented as 65535 in NITRO API
__count<Double>Read-onlycount parameter

Operations

(click to see Properties)

ADD:| DELETE:| GET| GET (ALL)| COUNT

Some options that you can use for each operations:

  • Getting warnings in response:NITRO allows you to get warnings in an operation by specifying the "warning" query parameter as "yes". For example, to get warnings while connecting to the Citrix ADC appliance, the URL is as follows:

    http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/login?warning=yes

    If any, the warnings are displayed in the response payload with the HTTP code "209 X-NITRO-WARNING".

  • Authenticated access for individual NITRO operations:NITRO allows you to logon to the Citrix ADC appliance to perform individual operations. You can use this option instead of creating a NITRO session (using the login object) and then using that session to perform all operations,

    To do this, you must specify the username and password in the request header of the NITRO request as follows:

    X-NITRO-USER:<username>

    X-NITRO-PASS:<password>

    Note:In such cases, make sure that the request header DOES not include the following:

    Cookie:NITRO_AUTH_TOKEN=<tokenvalue>

Note:

Mandatory parameters are marked in redand placeholder content is marked in <green>.

add:

URL:http://<Citrix-ADC-IP-address(NSIP)/nitro/v1/config/sslservice_sslcertkey_binding

HTTP Method:PUT

Request Headers:

Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Content-Type:application/json

Request Payload:

{
"sslservice_sslcertkey_binding":{
<b>"servicename":<String_value>,
</b>"certkeyname":<String_value>,
"ca":<Boolean_value>,
"crlcheck":<String_value>,
"skipcaname":<Boolean_value>,
"snicert":<Boolean_value>,
"ocspcheck":<String_value>
}}

Response:

HTTP Status Code on Success: 201 Created HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for Citrix ADC specific errors). The response payload provides details of the error

delete:

URL:http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>

Query-parameters:

args

http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>?args=certkeyname:<String_value>,ca:<Boolean_value>,crlcheck:<String_value>,snicert:<Boolean_value>

HTTP Method:DELETE

Request Headers:

Cookie:NITRO_AUTH_TOKEN=<tokenvalue>

Response:

HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for Citrix ADC specific errors). The response payload provides details of the error

get

URL:http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>

Query-parameters:

filter

http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>?filter=property-name1:property-value1,property-name2:property-value2

Use this query-parameter to get the filtered set of sslservice_sslcertkey_binding resources configured on Citrix ADC. Filtering can be done on any of the properties of the resource.

pagination

http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>?pagesize=#no;pageno=#no

Use this query-parameter to get the sslservice_sslcertkey_binding resources in chunks.

HTTP Method:GET

Request Headers:

Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json

Response:

HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for Citrix ADC specific errors). The response payload provides details of the errorResponse Headers:

Content-Type:application/json

Response Payload:

{ "sslservice_sslcertkey_binding": [ {
"ca":<Boolean_value>,
"crlcheck":<String_value>,
"servicename":<String_value>,
"certkeyname":<String_value>,
"skipcaname":<Boolean_value>,
"snicert":<Boolean_value>,
"ocspcheck":<String_value>,
"cleartextport":<Integer_value>
}]}

get (all)

URL:http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding

Query-parameters:

bulkbindings

http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding?bulkbindings=yes

NITRO allows you to fetch bindings in bulk.

HTTP Method:GET

Request Headers:

Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json

Response:

HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for Citrix ADC specific errors). The response payload provides details of the errorResponse Headers:

Content-Type:application/json

Response Payload:

{ "sslservice_sslcertkey_binding": [ {
"ca":<Boolean_value>,
"crlcheck":<String_value>,
"servicename":<String_value>,
"certkeyname":<String_value>,
"skipcaname":<Boolean_value>,
"snicert":<Boolean_value>,
"ocspcheck":<String_value>,
"cleartextport":<Integer_value>
}]}

count

URL:http://<Citrix-ADC-IP-address(NSIP)>/nitro/v1/config/sslservice_sslcertkey_binding/servicename_value<String>?count=yes

HTTP Method:GET

Request Headers:

Cookie:NITRO_AUTH_TOKEN=<tokenvalue> Accept:application/json

Response:

HTTP Status Code on Success: 200 OK HTTP Status Code on Failure: 4xx <string> (for general HTTP errors) or 5xx <string> (for Citrix ADC specific errors). The response payload provides details of the errorResponse Headers:

Content-Type:application/json

Response Payload:

{"sslservice_sslcertkey_binding": [ { "__count": "#no"} ] }