11-11-2024 10:15 AM
Im attempting to use /api/fmc_config/v1/domain/{domainUUID}/object/internalcertificates/{objectId} to replace/rotate the LetsEncrypt certificate on the FMC. I get a 200 response, but the certificate does not change.
Has anyone successfully done this? What are the minimum fields required for the api call body .e.g.
{
"cert": "-----BEGIN CERTIFICATE-----\nblah\n-----END CERTIFICATE-----",
"privateKey": "-----BEGIN PRIVATE KEY-----\nblah\n-----END PRIVATE KEY-----",
"id": "object_id",
"name": "cert_name"
}
11-12-2024 12:23 AM - edited 11-12-2024 08:21 PM
Hello,
It’s a great example of how even something as mundane as certificate rotation can be streamlined with a little coding. A quick tip that might help others: I’ve had similar issues in the past where the 200 OK response was returned, but the changes didn't apply. In my case, it turned out to be a subtle formatting issue in the private key or certificate, where an extra line break or hidden character was sneaking in. Sometimes even a minor discrepancy in formatting can cause FMC to ignore the update my methodist mychart without throwing an error. Always good to triple-check the formatting, especially when dealing with certs!
11-12-2024 06:54 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide