Creating an Application object

In this example, you create an Application object to describe how to install and track a certificate. If you defined Applications in a POST Certificates/Request, skip this section.

First, you create a Device object with host connection information. Then, you can add an Application object that gives installation details. The object corresponds to the intended use. In this case, the GSK Application object installs certificates to network devices in the IBM Global Security Kit (GSK) format. For more information, see the Certificate Authority and Hosting Platform Integration Guide.

To create the Application object

1. Reuse or create a bearer token that includes the scope config:manage.The token grants your client access to Trust Protection Platform. To get a bearer token, see Getting a token. For each subsequent API call, be sure to include the token in the request header.

2. Create a Device object that represents the physical host that will receive the certificate and private keys. You can call the POST Config/Create method. For example:

   POST https://tpp.venafi.example/vedsdk/Config/Create
   Authorization:Bearer 4MyGeneratedBearerTknz==

   {
      "ObjectDN":"\\VED\\Policy\\MyDevicethatneedsaCert",
      "Class":"Device",
      "NameAttributeList":[
         {
            "Name":"Host",
            "Value":"centos6.venafi.example"
         }
      ]
   }

3. Create the Application object. The object includes details that tell the Application driver how to install certificates and keys.

   TIP  In the NameAttributeList, always pass required and any optional parameters. Use the appropriate settings for the application object. Our example, uses IBM GSK application object settings.

   POST https://tpp.venafi.example/vedsdk/Config/Create
   Authorization:Bearer 4MyGeneratedBearerTknz==

   {
      "ObjectDN":"\\VED\\Policy\\MyDevicethatneedsaCert\\MyApplicationObj",
      "Class":"GSK",
      "NameAttributeList":[
         {
            "Name":"Driver Name",
            "Value":"appgsk"
         },
         {
            "Name":"Key Store",
            "Value":"appgsk"
         },
         {
            "Name":"Certificate Label",
            "Value":"MyLabel"
         },
         {
            "Name":"Key Store Credential",
            "Value":"\\VED\\Policy\\Credentials\\MyGSKCreds"
         }
      ]
   }

4. To find the Application object, either look in the Policy folder or call POST Config/Enumerate. For example:

   

   POST https://tpp.venafi.example/vedsdk/Config/Enumerate
   Authorization:Bearer 4MyGeneratedBearerTknz==
   {
      "ObjectDN":"\\VED\\Policy\\Certificates",
      "Pattern":"*ApplicationObj",
      "Recursive":true
   }

Next Steps

Associate the Application object to a certificate. Otherwise, the installation cannot occur. For more information, see Associating an Application object to a certificate.