In the X.509 system, a certification authority issues a certificate binding a public key to a particular distinguished name in the X.500 tradition, or to an alternative name such as an e-mail address or a DNS entry.
References to grid:x509certificate are object references.
The name part of the Grid x509certificate object reference has the following components:
- Serial number of Gird x509certificate
Example: grid:x509certificate/ZGldHdvcmtfdmlldyQxMTk:serialnum1
The object does not support the following operations:
The object cannot be managed on Cloud Platform members.
These fields are actual members of the object; thus, they can be requested by using _return_fields, if the fields are readable.
The basic version of the object contains the field(s): issuer, serial, subject.
Certificate issuer.
Type
String.
Search
The field is available for search via
Notes
The issuer is part of the base object.
The issuer cannot be updated.
issuer cannot be written.
X509Certificate serial number.
Type
String.
Search
The field is available for search via
Notes
The serial is part of the base object.
The serial cannot be updated.
serial cannot be written.
A Distinguished Name that is made of multiple relative distinguished names (RDNs).
Type
String.
Search
The field is available for search via
Notes
The subject is part of the base object.
The subject cannot be updated.
subject cannot be written.
Certificate expiry date.
Type
Timestamp.
Search
The field is available for search via
Notes
The valid_not_after cannot be updated.
valid_not_after cannot be written.
Certificate validity start date.
Type
Timestamp.
Search
The field is available for search via
Notes
The valid_not_before cannot be updated.
valid_not_before cannot be written.
| Field | Type | Req | R/O | Base | Search |
|---|---|---|---|---|---|
| issuer | String | N | Y | Y | : = ~ |
| serial | String | N | Y | Y | : = ~ |
| subject | String | N | Y | Y | : = ~ |
| valid_not_after | Timestamp | N | Y | N | ! < = > |
| valid_not_before | Timestamp | N | Y | N | ! < = > |
