POST Config/ReadPolicy

Returns policy attribute values for a specific class from folder or other folder objects that support policy settings.

Requirements

  • Permissions:  The caller must have View permission to the requested object.
  • Token scope:  Configuration

Headers

  • Content type: Content-Type:application/json.

  • Token: The bearer access token that you received. For example, Authorization:Bearer 4MyGeneratedBearerTknz==. For more information, see Passing a bearer token in your API calls.

Parameters

Input parameters

Name

Description

ObjectDN

The Distinguished Name (DN) of the object.

AttributeName

The name of the attribute to be read from each referenced DN. For more information, see How to find class names and attributes.

Class

The class the policy item is for

Returns

Response description

Name

Description

HTTP 200

For valid requests, this call returns a HTTP 200 message and the following data in the message body:

  • Error : Appears only when the operation cannot supply the necessary data. Provides only a description and Result. No other data.
  • Locked: A value of true indicates if the policy value was a suggestion or enforced; otherwise, false.
  • Result: The result code that indicates the reason for success or failure. For more information, see Config result codes.
  • Values: An array of values read from the attributes of the object.

HTTP 400

For invalid requests, this call returns HTTP 400 Bad Request and the following data in the message body:

  • error: The reason for the error.
  • error_description: If available, additional information about how to retry the request.

Example: Read policy attribute values

Request

POST https://tpp.venafi.example/vedsdk/Config/ReadPolicy
Authorization:Bearer 4MyGeneratedBearerTknz==
{
   "ObjectDN":"\\VED\\Policy\\TestPolicy",
   "AttributeName":"NetworkValidationDisabled",
   "Class":"JKS"   
}

Response

HTTP/1.1 200 OK
{
   "Locked":true,
   "Result":1,
   "Values":[
      "Overridedescription"
   ]
}