DELETE PKI/HashiCorp/CA/{guid}

Removes the configuration for managing a HashiCorp Vault PKI secrets engine from Trust Protection Platform. Retains all CA certificates enrolled and provisioned by the HashiCorp Vault PKI driver.

Requirements

  • Permissions:  The caller must have Delete permission to the Device and Application objects that respectively represent the Vault server and PKI secrets engine.
  • Token scope:  Certificate:Delete

Headers

  • Content type: Content-Type:application/json.

  • Token: The bearer access token that you received. For example, Authorization:Bearer 4MyGeneratedBearerTknz==. For more information, see Passing a bearer token in your API calls.

Parameters

Input parameters

Name

Description

{guid}

In the request URL, specify the GUID of the HashiCorp application object. In Trust Protection Platform, the GUID represents the HashiCorp Vault PKI secrets engine in the Vault. To get the GUID, call GET PKI/HashiCorp/CA.

Returns

Response description

Name

Description

HTTP 400

Error: For invalid requests, this method returns an error message for bad parameters, data, or syntax.

  • Can't find device object. You do not have sufficient rights to the object.
  • Failed to delete PKI.
  • Invalid permissions. You do not have permission to delete application object.
  • Invalid permissions. You do not have permission to delete device object.

HTTP 200

For valid requests, this method returns a HTTP 200 message and CreatePkiResponse object.

Example: Delete the Hashicorp intermediate certificate

Request

DELETE https://test.venafi.example/vedsdk/PKI/HashiCorp/CA/{1951b602-ee26-4222-bd28-64f8b6f57db7}
Authorization:Bearer 4MyGeneratedBearerTknz==

Response

HTTP/1.1 200 OK
{
    "CertificateDN":null,
    "CertificateGuid":null,
    "Error":null,
    "Guid":"{34302a27-8a2e-4c61-a280-37adace62b30}"
 }