topic Proper Syntax for Local Cert Generation in Automation/API Discussions https://live.paloaltonetworks.com/t5/automation-api-discussions/proper-syntax-for-local-cert-generation/m-p/192758#M1528 <P>Hi all,</P><P>&nbsp;</P><P>Looking for some help on the proper XML structure for an API call to generate a local certificate. Every which way I try sending queries lands me an 'Illegal request [parameter]' response.</P><P>&nbsp;</P><P>What I've tried lately was the following (with variables provided from a PowerShell function):</P><P>&nbsp;</P><P>&lt;request&gt;&lt;certificate&gt;&lt;generate&gt;&lt;name&gt;$CertificateName&lt;signed-by&gt;$SignedBy&lt;algorithm&gt;&lt;certificate-name&gt;$Username&lt;days-till-expiry&gt;$ExpiryDays&lt;digest&gt;$Digest&lt;RSA&gt;&lt;rsa-nbits&gt;$RSABits&lt;/rsa-nbits&gt;&lt;/RSA&gt;&lt;/digest&gt;&lt;days-till-expiry&gt;&lt;certificate-name&gt;&lt;/algorithm&gt;&lt;/name&gt;&lt;/signed-by&gt;&lt;/generate&gt;&lt;/certificate&gt;&lt;/request&gt;</P><P>&nbsp;</P><P>So ideally, I'd like to include the certificate name, CN, SignedBy, RSA w/20148 bits, sha256 digest, and 1 year expiry.</P><P>&nbsp;</P><P>Any help would be a huge help!</P> Thu, 21 Dec 2017 20:00:35 GMT f1r3withf1r3 2017-12-21T20:00:35Z Proper Syntax for Local Cert Generation https://live.paloaltonetworks.com/t5/automation-api-discussions/proper-syntax-for-local-cert-generation/m-p/192758#M1528 <P>Hi all,</P><P>&nbsp;</P><P>Looking for some help on the proper XML structure for an API call to generate a local certificate. Every which way I try sending queries lands me an 'Illegal request [parameter]' response.</P><P>&nbsp;</P><P>What I've tried lately was the following (with variables provided from a PowerShell function):</P><P>&nbsp;</P><P>&lt;request&gt;&lt;certificate&gt;&lt;generate&gt;&lt;name&gt;$CertificateName&lt;signed-by&gt;$SignedBy&lt;algorithm&gt;&lt;certificate-name&gt;$Username&lt;days-till-expiry&gt;$ExpiryDays&lt;digest&gt;$Digest&lt;RSA&gt;&lt;rsa-nbits&gt;$RSABits&lt;/rsa-nbits&gt;&lt;/RSA&gt;&lt;/digest&gt;&lt;days-till-expiry&gt;&lt;certificate-name&gt;&lt;/algorithm&gt;&lt;/name&gt;&lt;/signed-by&gt;&lt;/generate&gt;&lt;/certificate&gt;&lt;/request&gt;</P><P>&nbsp;</P><P>So ideally, I'd like to include the certificate name, CN, SignedBy, RSA w/20148 bits, sha256 digest, and 1 year expiry.</P><P>&nbsp;</P><P>Any help would be a huge help!</P> Thu, 21 Dec 2017 20:00:35 GMT https://live.paloaltonetworks.com/t5/automation-api-discussions/proper-syntax-for-local-cert-generation/m-p/192758#M1528 f1r3withf1r3 2017-12-21T20:00:35Z