Creating an Azure certificate in Python
I'm using Python to automate the creation of an App Service Cerficate for my Azure application (an AKS cluster). One of the REST calls I need to make is described here:
https://docs.microsoft.com/en-us/rest/api/appservice/appservicecertificateorders/createorupdate
This describes the call that's needed to create an App Service Cerficate Order, the result of which is then passed on to the REST call to create the App Service Certificate.
My problem is I can't figure out from the sparse documentation what is needed in the request body for this REST call. I've build a structure that looks like this:
request_body = {
"location" : "eastus",
"properties" : {
"autoRenew" : true,
"productType" : "StandardDomainValidatedSsl",
"distinguishedName": "???",
"csr": "???"
}
}
I've been unable to figure out what is needed for these last two fields. The csr field is described as "Last CSR that was created for this order", with CSR referring to a Certificate Signing Request. The way this is worded implies there was a previous CSR but this is a new request and I have nothing previous to fill in here. If I try to leave distguishedName and csr both blank, the call complains. I've tried creating a CSR with openssl and setting the csr field to the value that's created but it doesn't seem to like it. The distinquishedName field I assume is supposed to something like
"CN=mydomain.com,C=US,ST=California,..."
but it always complains that whatever I provide is invalid.
I've done some searches and can find no examples of what is needed for this REST call. If anyone can point me to some sample code or additional documentation, I'd appreciate it. Thanks.
Peter
azure ssl-certificate asked Jan 19 at 16:33
user3280383user3280383
8518
add a comment |
I'm using Python to automate the creation of an App Service Cerficate for my Azure application (an AKS cluster). One of the REST calls I need to make is described here:
https://docs.microsoft.com/en-us/rest/api/appservice/appservicecertificateorders/createorupdate
This describes the call that's needed to create an App Service Cerficate Order, the result of which is then passed on to the REST call to create the App Service Certificate.
My problem is I can't figure out from the sparse documentation what is needed in the request body for this REST call. I've build a structure that looks like this:
request_body = {
"location" : "eastus",
"properties" : {
"autoRenew" : true,
"productType" : "StandardDomainValidatedSsl",
"distinguishedName": "???",
"csr": "???"
}
}
I've been unable to figure out what is needed for these last two fields. The csr field is described as "Last CSR that was created for this order", with CSR referring to a Certificate Signing Request. The way this is worded implies there was a previous CSR but this is a new request and I have nothing previous to fill in here. If I try to leave distguishedName and csr both blank, the call complains. I've tried creating a CSR with openssl and setting the csr field to the value that's created but it doesn't seem to like it. The distinquishedName field I assume is supposed to something like
"CN=mydomain.com,C=US,ST=California,..."
but it always complains that whatever I provide is invalid.
I've done some searches and can find no examples of what is needed for this REST call. If anyone can point me to some sample code or additional documentation, I'd appreciate it. Thanks.
Peter
azure ssl-certificate asked Jan 19 at 16:33
user3280383user3280383
8518
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20
add a comment |
I'm using Python to automate the creation of an App Service Cerficate for my Azure application (an AKS cluster). One of the REST calls I need to make is described here:
https://docs.microsoft.com/en-us/rest/api/appservice/appservicecertificateorders/createorupdate
This describes the call that's needed to create an App Service Cerficate Order, the result of which is then passed on to the REST call to create the App Service Certificate.
My problem is I can't figure out from the sparse documentation what is needed in the request body for this REST call. I've build a structure that looks like this:
request_body = {
"location" : "eastus",
"properties" : {
"autoRenew" : true,
"productType" : "StandardDomainValidatedSsl",
"distinguishedName": "???",
"csr": "???"
}
}
I've been unable to figure out what is needed for these last two fields. The csr field is described as "Last CSR that was created for this order", with CSR referring to a Certificate Signing Request. The way this is worded implies there was a previous CSR but this is a new request and I have nothing previous to fill in here. If I try to leave distguishedName and csr both blank, the call complains. I've tried creating a CSR with openssl and setting the csr field to the value that's created but it doesn't seem to like it. The distinquishedName field I assume is supposed to something like
"CN=mydomain.com,C=US,ST=California,..."
but it always complains that whatever I provide is invalid.
I've done some searches and can find no examples of what is needed for this REST call. If anyone can point me to some sample code or additional documentation, I'd appreciate it. Thanks.
Peter
azure ssl-certificate asked Jan 19 at 16:33
user3280383user3280383
8518
I'm using Python to automate the creation of an App Service Cerficate for my Azure application (an AKS cluster). One of the REST calls I need to make is described here:
https://docs.microsoft.com/en-us/rest/api/appservice/appservicecertificateorders/createorupdate
This describes the call that's needed to create an App Service Cerficate Order, the result of which is then passed on to the REST call to create the App Service Certificate.
My problem is I can't figure out from the sparse documentation what is needed in the request body for this REST call. I've build a structure that looks like this:
request_body = {
"location" : "eastus",
"properties" : {
"autoRenew" : true,
"productType" : "StandardDomainValidatedSsl",
"distinguishedName": "???",
"csr": "???"
}
}
I've been unable to figure out what is needed for these last two fields. The csr field is described as "Last CSR that was created for this order", with CSR referring to a Certificate Signing Request. The way this is worded implies there was a previous CSR but this is a new request and I have nothing previous to fill in here. If I try to leave distguishedName and csr both blank, the call complains. I've tried creating a CSR with openssl and setting the csr field to the value that's created but it doesn't seem to like it. The distinquishedName field I assume is supposed to something like
"CN=mydomain.com,C=US,ST=California,..."
but it always complains that whatever I provide is invalid.
I've done some searches and can find no examples of what is needed for this REST call. If anyone can point me to some sample code or additional documentation, I'd appreciate it. Thanks.
Peter
azure ssl-certificate azure ssl-certificate asked Jan 19 at 16:33
user3280383user3280383
8518
asked Jan 19 at 16:33
user3280383user3280383
8518
asked Jan 19 at 16:33
user3280383user3280383
8518
asked Jan 19 at 16:33
user3280383user3280383
8518
asked Jan 19 at 16:33
user3280383user3280383
8518
8518
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20
add a comment |
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20
add a comment |
2 Answers
2
active
oldest
votes
I finally determined that this combination works:
{
"location": "global",
"properties": {
"productType": "StandardDomainValidatedSsl",
"autoRenew": true,
"distinguishedName":"CN=mysubdomain.mydomain.com"
}
}
The csr field as it turns out is not needed; one is returned as a result of making this REST call. And this is just the first step in the certificate creation process. At this point the request is in a pending state and still needs to be validated.
answered Jan 21 at 16:40
user3280383user3280383
8518
add a comment |
A CSR look something like:
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
add a comment |
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54269152%2fcreating-an-azure-certificate-in-python%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
I finally determined that this combination works:
{
"location": "global",
"properties": {
"productType": "StandardDomainValidatedSsl",
"autoRenew": true,
"distinguishedName":"CN=mysubdomain.mydomain.com"
}
}
The csr field as it turns out is not needed; one is returned as a result of making this REST call. And this is just the first step in the certificate creation process. At this point the request is in a pending state and still needs to be validated.
answered Jan 21 at 16:40
user3280383user3280383
8518
add a comment |
I finally determined that this combination works:
{
"location": "global",
"properties": {
"productType": "StandardDomainValidatedSsl",
"autoRenew": true,
"distinguishedName":"CN=mysubdomain.mydomain.com"
}
}
The csr field as it turns out is not needed; one is returned as a result of making this REST call. And this is just the first step in the certificate creation process. At this point the request is in a pending state and still needs to be validated.
answered Jan 21 at 16:40
user3280383user3280383
8518
add a comment |
I finally determined that this combination works:
{
"location": "global",
"properties": {
"productType": "StandardDomainValidatedSsl",
"autoRenew": true,
"distinguishedName":"CN=mysubdomain.mydomain.com"
}
}
The csr field as it turns out is not needed; one is returned as a result of making this REST call. And this is just the first step in the certificate creation process. At this point the request is in a pending state and still needs to be validated.
answered Jan 21 at 16:40
user3280383user3280383
8518
I finally determined that this combination works:
{
"location": "global",
"properties": {
"productType": "StandardDomainValidatedSsl",
"autoRenew": true,
"distinguishedName":"CN=mysubdomain.mydomain.com"
}
}
The csr field as it turns out is not needed; one is returned as a result of making this REST call. And this is just the first step in the certificate creation process. At this point the request is in a pending state and still needs to be validated.
answered Jan 21 at 16:40
user3280383user3280383
8518
answered Jan 21 at 16:40
user3280383user3280383
8518
answered Jan 21 at 16:40
user3280383user3280383
8518
answered Jan 21 at 16:40
user3280383user3280383
8518
8518
add a comment |
add a comment |
A CSR look something like:
-----BEGIN CERTIFICATE REQUEST-----
MIICvDCCAaQCAQAwdzELMAkGA1UEBhMCVVMxDTALBgNVBAgMBFV0YWgxDzANBgNV
BAcMBkxpbmRvbjEWMBQGA1UECgwNRGlnaUNlcnQgSW5jLjERMA8GA1UECwwIRGln
aUNlcnQxHTAbBgNVBAMMFGV4YW1wbGUuZGlnaWNlcnQuY29tMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8+To7d+2kPWeBv/orU3LVbJwDrSQbeKamCmo
wp5bqDxIwV20zqRb7APUOKYoVEFFOEQs6T6gImnIolhbiH6m4zgZ/CPvWBOkZc+c
1Po2EmvBz+AD5sBdT5kzGQA6NbWyZGldxRthNLOs1efOhdnWFuhI162qmcflgpiI
WDuwq4C9f+YkeJhNn9dF5+owm8cOQmDrV8NNdiTqin8q3qYAHHJRW28glJUCZkTZ
wIaSR6crBQ8TbYNE0dc+Caa3DOIkz1EOsHWzTx+n0zKfqcbgXi4DJx+C1bjptYPR
BPZL8DAeWuA8ebudVT44yEp82G96/Ggcf7F33xMxe0yc+Xa6owIDAQABoAAwDQYJ
KoZIhvcNAQEFBQADggEBAB0kcrFccSmFDmxox0Ne01UIqSsDqHgL+XmHTXJwre6D
hJSZwbvEtOK0G3+dr4Fs11WuUNt5qcLsx5a8uk4G6AKHMzuhLsJ7XZjgmQXGECpY
Q4mC3yT3ZoCGpIXbw+iP3lmEEXgaQL0Tx5LFl/okKbKYwIqNiyKWOMj7ZR/wxWg/
ZDGRs55xuoeLDJ/ZRFf9bI+IaCUd1YrfYcHIl3G87Av+r49YVwqRDT0VDV7uLgqn
29XI1PpVUNCPQGn9p/eX6Qo7vpDaPybRtA2R7XLKjQaF9oXWeCUqy1hvJac9QFO2
97Ob1alpHPoZ7mWiEuJwjBPii6a9M9G30nUo39lBi1w=
-----END CERTIFICATE REQUEST-----
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
add a comment |
A CSR look something like:
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
add a comment |
A CSR look something like:
-----BEGIN CERTIFICATE REQUEST-----
MIICvDCCAaQCAQAwdzELMAkGA1UEBhMCVVMxDTALBgNVBAgMBFV0YWgxDzANBgNV
BAcMBkxpbmRvbjEWMBQGA1UECgwNRGlnaUNlcnQgSW5jLjERMA8GA1UECwwIRGln
aUNlcnQxHTAbBgNVBAMMFGV4YW1wbGUuZGlnaWNlcnQuY29tMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8+To7d+2kPWeBv/orU3LVbJwDrSQbeKamCmo
wp5bqDxIwV20zqRb7APUOKYoVEFFOEQs6T6gImnIolhbiH6m4zgZ/CPvWBOkZc+c
1Po2EmvBz+AD5sBdT5kzGQA6NbWyZGldxRthNLOs1efOhdnWFuhI162qmcflgpiI
WDuwq4C9f+YkeJhNn9dF5+owm8cOQmDrV8NNdiTqin8q3qYAHHJRW28glJUCZkTZ
wIaSR6crBQ8TbYNE0dc+Caa3DOIkz1EOsHWzTx+n0zKfqcbgXi4DJx+C1bjptYPR
BPZL8DAeWuA8ebudVT44yEp82G96/Ggcf7F33xMxe0yc+Xa6owIDAQABoAAwDQYJ
KoZIhvcNAQEFBQADggEBAB0kcrFccSmFDmxox0Ne01UIqSsDqHgL+XmHTXJwre6D
hJSZwbvEtOK0G3+dr4Fs11WuUNt5qcLsx5a8uk4G6AKHMzuhLsJ7XZjgmQXGECpY
Q4mC3yT3ZoCGpIXbw+iP3lmEEXgaQL0Tx5LFl/okKbKYwIqNiyKWOMj7ZR/wxWg/
ZDGRs55xuoeLDJ/ZRFf9bI+IaCUd1YrfYcHIl3G87Av+r49YVwqRDT0VDV7uLgqn
29XI1PpVUNCPQGn9p/eX6Qo7vpDaPybRtA2R7XLKjQaF9oXWeCUqy1hvJac9QFO2
97Ob1alpHPoZ7mWiEuJwjBPii6a9M9G30nUo39lBi1w=
-----END CERTIFICATE REQUEST-----
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
A CSR look something like:
-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
answered Jan 19 at 20:43
Ken W MSFTKen W MSFT
53927
53927
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
add a comment |
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
I know what a CSR looks like. As I mentioned in my post I created one with openssl and set the csr field to the string generated. The REST call still complained.
– user3280383
Jan 20 at 3:59
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54269152%2fcreating-an-azure-certificate-in-python%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Take a look at this, it shows the AppServiceCertificateOrder property and you can find the csr in it.
– Charles Xu
Jan 20 at 4:07
This link provides the very same minimal information that's in the link I posted above. For the csr field it just says "Last CSR that was created for this order" and for the distinguishedName field the description is just "Certificate distinguished name". It doesn't include any examples beyond this. I know what a CSR looks like and I know what a dintinguished name looks like, but the attempts I make to call this REST operation always fail with complaints about these two fields.
– user3280383
Jan 20 at 20:25
Maybe you can try to list through the API to have a learn.
– Charles Xu
Jan 21 at 3:05
Not sure I understand what you mean?
– user3280383
Jan 21 at 6:15
You can use the List API to list the existing resources that you want to create and then maybe you would know how to configure it.
– Charles Xu
Jan 21 at 6:20