1*5ecf7b4eSGunnar Mills{ 2*5ecf7b4eSGunnar Mills "$id": "http://redfish.dmtf.org/schemas/v1/CertificateEnrollment.v1_0_0.json", 3*5ecf7b4eSGunnar Mills "$ref": "#/definitions/CertificateEnrollment", 4*5ecf7b4eSGunnar Mills "$schema": "http://redfish.dmtf.org/schemas/v1/redfish-schema-v1.json", 5*5ecf7b4eSGunnar Mills "copyright": "Copyright 2014-2025 DMTF. For the full DMTF copyright policy, see http://www.dmtf.org/about/policies/copyright", 6*5ecf7b4eSGunnar Mills "definitions": { 7*5ecf7b4eSGunnar Mills "ACMEChallengeType": { 8*5ecf7b4eSGunnar Mills "enum": [ 9*5ecf7b4eSGunnar Mills "Http01", 10*5ecf7b4eSGunnar Mills "Dns01" 11*5ecf7b4eSGunnar Mills ], 12*5ecf7b4eSGunnar Mills "enumDescriptions": { 13*5ecf7b4eSGunnar Mills "Dns01": "DNS challenge type for domain validation.", 14*5ecf7b4eSGunnar Mills "Http01": "HTTP challenge type for domain validation." 15*5ecf7b4eSGunnar Mills }, 16*5ecf7b4eSGunnar Mills "enumLongDescriptions": { 17*5ecf7b4eSGunnar Mills "Dns01": "This value shall indicate the RFC8555-defined dns-01 challenge type for domain validation.", 18*5ecf7b4eSGunnar Mills "Http01": "This value shall indicate the RFC8555-defined http-01 challenge type for domain validation." 19*5ecf7b4eSGunnar Mills }, 20*5ecf7b4eSGunnar Mills "type": "string" 21*5ecf7b4eSGunnar Mills }, 22*5ecf7b4eSGunnar Mills "ACMEConfiguration": { 23*5ecf7b4eSGunnar Mills "additionalProperties": false, 24*5ecf7b4eSGunnar Mills "description": "ACME protocol specific configuration.", 25*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain configuration specific to the ACME protocol.", 26*5ecf7b4eSGunnar Mills "patternProperties": { 27*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 28*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 29*5ecf7b4eSGunnar Mills "type": [ 30*5ecf7b4eSGunnar Mills "array", 31*5ecf7b4eSGunnar Mills "boolean", 32*5ecf7b4eSGunnar Mills "integer", 33*5ecf7b4eSGunnar Mills "number", 34*5ecf7b4eSGunnar Mills "null", 35*5ecf7b4eSGunnar Mills "object", 36*5ecf7b4eSGunnar Mills "string" 37*5ecf7b4eSGunnar Mills ] 38*5ecf7b4eSGunnar Mills } 39*5ecf7b4eSGunnar Mills }, 40*5ecf7b4eSGunnar Mills "properties": { 41*5ecf7b4eSGunnar Mills "ChallengeType": { 42*5ecf7b4eSGunnar Mills "anyOf": [ 43*5ecf7b4eSGunnar Mills { 44*5ecf7b4eSGunnar Mills "$ref": "#/definitions/ACMEChallengeType" 45*5ecf7b4eSGunnar Mills }, 46*5ecf7b4eSGunnar Mills { 47*5ecf7b4eSGunnar Mills "type": "null" 48*5ecf7b4eSGunnar Mills } 49*5ecf7b4eSGunnar Mills ], 50*5ecf7b4eSGunnar Mills "description": "The ACME challenge type used for domain validation.", 51*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the ACME challenge type used for domain validation during automatic certificate enrollment.", 52*5ecf7b4eSGunnar Mills "readonly": false 53*5ecf7b4eSGunnar Mills }, 54*5ecf7b4eSGunnar Mills "EABKey": { 55*5ecf7b4eSGunnar Mills "description": "The external account binding (EAB) key value.", 56*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain a Base64-encoded string, with padding characters, of the external account binding (EAB) key value used for ACME account registration with certificate authorities that require EAB. This property shall be `null` in responses.", 57*5ecf7b4eSGunnar Mills "readonly": false, 58*5ecf7b4eSGunnar Mills "type": [ 59*5ecf7b4eSGunnar Mills "string", 60*5ecf7b4eSGunnar Mills "null" 61*5ecf7b4eSGunnar Mills ], 62*5ecf7b4eSGunnar Mills "writeOnly": true 63*5ecf7b4eSGunnar Mills }, 64*5ecf7b4eSGunnar Mills "EABKeyId": { 65*5ecf7b4eSGunnar Mills "description": "The external account binding (EAB) key identifier.", 66*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the external account binding (EAB) key identifier used for ACME account registration with certificate authorities that require EAB. This property shall be `null` in responses.", 67*5ecf7b4eSGunnar Mills "readonly": false, 68*5ecf7b4eSGunnar Mills "type": [ 69*5ecf7b4eSGunnar Mills "string", 70*5ecf7b4eSGunnar Mills "null" 71*5ecf7b4eSGunnar Mills ], 72*5ecf7b4eSGunnar Mills "writeOnly": true 73*5ecf7b4eSGunnar Mills }, 74*5ecf7b4eSGunnar Mills "Email": { 75*5ecf7b4eSGunnar Mills "description": "The email address for ACME account registration.", 76*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the email address used for ACME account registration and notifications.", 77*5ecf7b4eSGunnar Mills "readonly": false, 78*5ecf7b4eSGunnar Mills "type": [ 79*5ecf7b4eSGunnar Mills "string", 80*5ecf7b4eSGunnar Mills "null" 81*5ecf7b4eSGunnar Mills ] 82*5ecf7b4eSGunnar Mills } 83*5ecf7b4eSGunnar Mills }, 84*5ecf7b4eSGunnar Mills "type": "object" 85*5ecf7b4eSGunnar Mills }, 86*5ecf7b4eSGunnar Mills "Actions": { 87*5ecf7b4eSGunnar Mills "additionalProperties": false, 88*5ecf7b4eSGunnar Mills "description": "The available actions for this resource.", 89*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain the available actions for this resource.", 90*5ecf7b4eSGunnar Mills "patternProperties": { 91*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 92*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 93*5ecf7b4eSGunnar Mills "type": [ 94*5ecf7b4eSGunnar Mills "array", 95*5ecf7b4eSGunnar Mills "boolean", 96*5ecf7b4eSGunnar Mills "integer", 97*5ecf7b4eSGunnar Mills "number", 98*5ecf7b4eSGunnar Mills "null", 99*5ecf7b4eSGunnar Mills "object", 100*5ecf7b4eSGunnar Mills "string" 101*5ecf7b4eSGunnar Mills ] 102*5ecf7b4eSGunnar Mills } 103*5ecf7b4eSGunnar Mills }, 104*5ecf7b4eSGunnar Mills "properties": { 105*5ecf7b4eSGunnar Mills "Oem": { 106*5ecf7b4eSGunnar Mills "$ref": "#/definitions/OemActions", 107*5ecf7b4eSGunnar Mills "description": "The available OEM-specific actions for this resource.", 108*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the available OEM-specific actions for this resource." 109*5ecf7b4eSGunnar Mills } 110*5ecf7b4eSGunnar Mills }, 111*5ecf7b4eSGunnar Mills "type": "object" 112*5ecf7b4eSGunnar Mills }, 113*5ecf7b4eSGunnar Mills "CSRParameters": { 114*5ecf7b4eSGunnar Mills "additionalProperties": false, 115*5ecf7b4eSGunnar Mills "description": "Certificate signing request parameters.", 116*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain the parameters for generating a certificate signing request.", 117*5ecf7b4eSGunnar Mills "patternProperties": { 118*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 119*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 120*5ecf7b4eSGunnar Mills "type": [ 121*5ecf7b4eSGunnar Mills "array", 122*5ecf7b4eSGunnar Mills "boolean", 123*5ecf7b4eSGunnar Mills "integer", 124*5ecf7b4eSGunnar Mills "number", 125*5ecf7b4eSGunnar Mills "null", 126*5ecf7b4eSGunnar Mills "object", 127*5ecf7b4eSGunnar Mills "string" 128*5ecf7b4eSGunnar Mills ] 129*5ecf7b4eSGunnar Mills } 130*5ecf7b4eSGunnar Mills }, 131*5ecf7b4eSGunnar Mills "properties": { 132*5ecf7b4eSGunnar Mills "AlternativeNames": { 133*5ecf7b4eSGunnar Mills "description": "The additional host names of the component to secure.", 134*5ecf7b4eSGunnar Mills "items": { 135*5ecf7b4eSGunnar Mills "type": [ 136*5ecf7b4eSGunnar Mills "string", 137*5ecf7b4eSGunnar Mills "null" 138*5ecf7b4eSGunnar Mills ] 139*5ecf7b4eSGunnar Mills }, 140*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain an array of additional host names of the component to secure, as defined by the RFC5280 'subjectAltName' attribute.", 141*5ecf7b4eSGunnar Mills "readonly": false, 142*5ecf7b4eSGunnar Mills "type": "array" 143*5ecf7b4eSGunnar Mills }, 144*5ecf7b4eSGunnar Mills "ChallengePassword": { 145*5ecf7b4eSGunnar Mills "description": "The challenge password to apply to the certificate for revocation requests.", 146*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the challenge password to apply to the certificate for revocation requests as defined by the RFC2985 'challengePassword' attribute.", 147*5ecf7b4eSGunnar Mills "readonly": false, 148*5ecf7b4eSGunnar Mills "type": [ 149*5ecf7b4eSGunnar Mills "string", 150*5ecf7b4eSGunnar Mills "null" 151*5ecf7b4eSGunnar Mills ] 152*5ecf7b4eSGunnar Mills }, 153*5ecf7b4eSGunnar Mills "City": { 154*5ecf7b4eSGunnar Mills "description": "The city or locality of the organization making the request.", 155*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the city or locality of the organization making the request, as defined by the RFC5280 'localityName' attribute.", 156*5ecf7b4eSGunnar Mills "readonly": false, 157*5ecf7b4eSGunnar Mills "type": [ 158*5ecf7b4eSGunnar Mills "string", 159*5ecf7b4eSGunnar Mills "null" 160*5ecf7b4eSGunnar Mills ] 161*5ecf7b4eSGunnar Mills }, 162*5ecf7b4eSGunnar Mills "CommonName": { 163*5ecf7b4eSGunnar Mills "description": "The fully qualified domain name of the component to secure.", 164*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the fully qualified domain name of the component to secure, as defined by the RFC5280 'commonName' attribute.", 165*5ecf7b4eSGunnar Mills "readonly": false, 166*5ecf7b4eSGunnar Mills "type": "string" 167*5ecf7b4eSGunnar Mills }, 168*5ecf7b4eSGunnar Mills "ContactPerson": { 169*5ecf7b4eSGunnar Mills "description": "The name of the user making the request.", 170*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the name of the user making the request, as defined by the RFC5280 'name' attribute.", 171*5ecf7b4eSGunnar Mills "readonly": false, 172*5ecf7b4eSGunnar Mills "type": [ 173*5ecf7b4eSGunnar Mills "string", 174*5ecf7b4eSGunnar Mills "null" 175*5ecf7b4eSGunnar Mills ] 176*5ecf7b4eSGunnar Mills }, 177*5ecf7b4eSGunnar Mills "Country": { 178*5ecf7b4eSGunnar Mills "description": "The two-letter country code of the organization making the request.", 179*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the two-letter ISO code for the country of the organization making the request, as defined by the RFC5280 'countryName' attribute.", 180*5ecf7b4eSGunnar Mills "readonly": false, 181*5ecf7b4eSGunnar Mills "type": [ 182*5ecf7b4eSGunnar Mills "string", 183*5ecf7b4eSGunnar Mills "null" 184*5ecf7b4eSGunnar Mills ] 185*5ecf7b4eSGunnar Mills }, 186*5ecf7b4eSGunnar Mills "Email": { 187*5ecf7b4eSGunnar Mills "description": "The email address of the contact within the organization making the request.", 188*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the email address of the contact within the organization making the request, as defined by the RFC2985 'emailAddress' attribute.", 189*5ecf7b4eSGunnar Mills "readonly": false, 190*5ecf7b4eSGunnar Mills "type": [ 191*5ecf7b4eSGunnar Mills "string", 192*5ecf7b4eSGunnar Mills "null" 193*5ecf7b4eSGunnar Mills ] 194*5ecf7b4eSGunnar Mills }, 195*5ecf7b4eSGunnar Mills "GivenName": { 196*5ecf7b4eSGunnar Mills "description": "The given name of the user making the request.", 197*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the given name of the user making the request, as defined by the RFC5280 'givenName' attribute.", 198*5ecf7b4eSGunnar Mills "readonly": false, 199*5ecf7b4eSGunnar Mills "type": [ 200*5ecf7b4eSGunnar Mills "string", 201*5ecf7b4eSGunnar Mills "null" 202*5ecf7b4eSGunnar Mills ] 203*5ecf7b4eSGunnar Mills }, 204*5ecf7b4eSGunnar Mills "Initials": { 205*5ecf7b4eSGunnar Mills "description": "The initials of the user making the request.", 206*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the initials of the user making the request, as defined by the RFC5280 'initials' attribute.", 207*5ecf7b4eSGunnar Mills "readonly": false, 208*5ecf7b4eSGunnar Mills "type": [ 209*5ecf7b4eSGunnar Mills "string", 210*5ecf7b4eSGunnar Mills "null" 211*5ecf7b4eSGunnar Mills ] 212*5ecf7b4eSGunnar Mills }, 213*5ecf7b4eSGunnar Mills "KeyBitLength": { 214*5ecf7b4eSGunnar Mills "description": "The length of the key, in bits, if needed based on the `KeyPairAlgorithm` property value.", 215*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the length of the key, in bits, if needed based on the `KeyPairAlgorithm` property value.", 216*5ecf7b4eSGunnar Mills "readonly": false, 217*5ecf7b4eSGunnar Mills "type": [ 218*5ecf7b4eSGunnar Mills "integer", 219*5ecf7b4eSGunnar Mills "null" 220*5ecf7b4eSGunnar Mills ] 221*5ecf7b4eSGunnar Mills }, 222*5ecf7b4eSGunnar Mills "KeyCurveId": { 223*5ecf7b4eSGunnar Mills "description": "The curve ID to use with the key, if needed based on the `KeyPairAlgorithm` property value.", 224*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the curve ID to use with the key, if needed based on the `KeyPairAlgorithm` property value. The allowable values for this property shall be the strings in the 'Name' field of the 'TPM_ECC_CURVE Constants' table within the 'Trusted Computing Group Algorithm Registry'.", 225*5ecf7b4eSGunnar Mills "readonly": false, 226*5ecf7b4eSGunnar Mills "type": [ 227*5ecf7b4eSGunnar Mills "string", 228*5ecf7b4eSGunnar Mills "null" 229*5ecf7b4eSGunnar Mills ] 230*5ecf7b4eSGunnar Mills }, 231*5ecf7b4eSGunnar Mills "KeyPairAlgorithm": { 232*5ecf7b4eSGunnar Mills "description": "The type of key-pair for use with signing algorithms.", 233*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the type of key-pair for use with signing algorithms. The allowable values for this property shall be the strings in the 'Algorithm Name' field of the 'TPM_ALG_ID Constants' table within the 'Trusted Computing Group Algorithm Registry'.", 234*5ecf7b4eSGunnar Mills "readonly": false, 235*5ecf7b4eSGunnar Mills "type": [ 236*5ecf7b4eSGunnar Mills "string", 237*5ecf7b4eSGunnar Mills "null" 238*5ecf7b4eSGunnar Mills ] 239*5ecf7b4eSGunnar Mills }, 240*5ecf7b4eSGunnar Mills "KeyUsage": { 241*5ecf7b4eSGunnar Mills "description": "The usage of the key contained in the certificate.", 242*5ecf7b4eSGunnar Mills "items": { 243*5ecf7b4eSGunnar Mills "anyOf": [ 244*5ecf7b4eSGunnar Mills { 245*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/KeyUsage" 246*5ecf7b4eSGunnar Mills }, 247*5ecf7b4eSGunnar Mills { 248*5ecf7b4eSGunnar Mills "type": "null" 249*5ecf7b4eSGunnar Mills } 250*5ecf7b4eSGunnar Mills ] 251*5ecf7b4eSGunnar Mills }, 252*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the usage of the key contained in the certificate. If the client does not provide this value, the service can determine the appropriate key usage settings in the certificate signing request.", 253*5ecf7b4eSGunnar Mills "readonly": false, 254*5ecf7b4eSGunnar Mills "type": "array" 255*5ecf7b4eSGunnar Mills }, 256*5ecf7b4eSGunnar Mills "Organization": { 257*5ecf7b4eSGunnar Mills "description": "The name of the organization making the request.", 258*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the name of the organization making the request, as defined by the RFC5280 'organizationName' attribute.", 259*5ecf7b4eSGunnar Mills "readonly": false, 260*5ecf7b4eSGunnar Mills "type": [ 261*5ecf7b4eSGunnar Mills "string", 262*5ecf7b4eSGunnar Mills "null" 263*5ecf7b4eSGunnar Mills ] 264*5ecf7b4eSGunnar Mills }, 265*5ecf7b4eSGunnar Mills "OrganizationalUnit": { 266*5ecf7b4eSGunnar Mills "description": "The name of the unit or division of the organization making the request.", 267*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the name of the unit or division of the organization making the request, as defined by the RFC5280 'organizationalUnitName' attribute.", 268*5ecf7b4eSGunnar Mills "readonly": false, 269*5ecf7b4eSGunnar Mills "type": [ 270*5ecf7b4eSGunnar Mills "string", 271*5ecf7b4eSGunnar Mills "null" 272*5ecf7b4eSGunnar Mills ] 273*5ecf7b4eSGunnar Mills }, 274*5ecf7b4eSGunnar Mills "State": { 275*5ecf7b4eSGunnar Mills "description": "The state, province, or region of the organization making the request.", 276*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the state, province, or region of the organization making the request, as defined by the RFC5280 'stateOrProvinceName' attribute.", 277*5ecf7b4eSGunnar Mills "readonly": false, 278*5ecf7b4eSGunnar Mills "type": [ 279*5ecf7b4eSGunnar Mills "string", 280*5ecf7b4eSGunnar Mills "null" 281*5ecf7b4eSGunnar Mills ] 282*5ecf7b4eSGunnar Mills }, 283*5ecf7b4eSGunnar Mills "Surname": { 284*5ecf7b4eSGunnar Mills "description": "The surname of the user making the request.", 285*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the surname of the user making the request, as defined by the RFC5280 'surname' attribute.", 286*5ecf7b4eSGunnar Mills "readonly": false, 287*5ecf7b4eSGunnar Mills "type": [ 288*5ecf7b4eSGunnar Mills "string", 289*5ecf7b4eSGunnar Mills "null" 290*5ecf7b4eSGunnar Mills ] 291*5ecf7b4eSGunnar Mills }, 292*5ecf7b4eSGunnar Mills "UnstructuredName": { 293*5ecf7b4eSGunnar Mills "description": "The unstructured name of the subject.", 294*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the unstructured name of the subject, as defined by the RFC2985 'unstructuredName' attribute.", 295*5ecf7b4eSGunnar Mills "readonly": false, 296*5ecf7b4eSGunnar Mills "type": [ 297*5ecf7b4eSGunnar Mills "string", 298*5ecf7b4eSGunnar Mills "null" 299*5ecf7b4eSGunnar Mills ] 300*5ecf7b4eSGunnar Mills } 301*5ecf7b4eSGunnar Mills }, 302*5ecf7b4eSGunnar Mills "type": "object" 303*5ecf7b4eSGunnar Mills }, 304*5ecf7b4eSGunnar Mills "CertificateEnrollment": { 305*5ecf7b4eSGunnar Mills "additionalProperties": false, 306*5ecf7b4eSGunnar Mills "description": "This resource shall represent an automatic certificate enrollment for a Redfish implementation.", 307*5ecf7b4eSGunnar Mills "longDescription": "The `CertificateEnrollment` schema describes an automatic certificate enrollment for a specific protocol such as ACME (Automatic Certificate Management Environment) or SCEP (Simple Certificate Enrollment Protocol).", 308*5ecf7b4eSGunnar Mills "patternProperties": { 309*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 310*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 311*5ecf7b4eSGunnar Mills "type": [ 312*5ecf7b4eSGunnar Mills "array", 313*5ecf7b4eSGunnar Mills "boolean", 314*5ecf7b4eSGunnar Mills "integer", 315*5ecf7b4eSGunnar Mills "number", 316*5ecf7b4eSGunnar Mills "null", 317*5ecf7b4eSGunnar Mills "object", 318*5ecf7b4eSGunnar Mills "string" 319*5ecf7b4eSGunnar Mills ] 320*5ecf7b4eSGunnar Mills } 321*5ecf7b4eSGunnar Mills }, 322*5ecf7b4eSGunnar Mills "properties": { 323*5ecf7b4eSGunnar Mills "@odata.context": { 324*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/context" 325*5ecf7b4eSGunnar Mills }, 326*5ecf7b4eSGunnar Mills "@odata.etag": { 327*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/etag" 328*5ecf7b4eSGunnar Mills }, 329*5ecf7b4eSGunnar Mills "@odata.id": { 330*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/id" 331*5ecf7b4eSGunnar Mills }, 332*5ecf7b4eSGunnar Mills "@odata.type": { 333*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/type" 334*5ecf7b4eSGunnar Mills }, 335*5ecf7b4eSGunnar Mills "ACME": { 336*5ecf7b4eSGunnar Mills "anyOf": [ 337*5ecf7b4eSGunnar Mills { 338*5ecf7b4eSGunnar Mills "$ref": "#/definitions/ACMEConfiguration" 339*5ecf7b4eSGunnar Mills }, 340*5ecf7b4eSGunnar Mills { 341*5ecf7b4eSGunnar Mills "type": "null" 342*5ecf7b4eSGunnar Mills } 343*5ecf7b4eSGunnar Mills ], 344*5ecf7b4eSGunnar Mills "description": "ACME (Automatic Certificate Management Environment) protocol specific configuration for automatic certificate enrollment.", 345*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain configuration specific to the ACME protocol. This property shall only be present when the `EnrollmentType` property contains `ACME`." 346*5ecf7b4eSGunnar Mills }, 347*5ecf7b4eSGunnar Mills "Actions": { 348*5ecf7b4eSGunnar Mills "$ref": "#/definitions/Actions", 349*5ecf7b4eSGunnar Mills "description": "The available actions for this resource.", 350*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the available actions for this resource." 351*5ecf7b4eSGunnar Mills }, 352*5ecf7b4eSGunnar Mills "CSRParameters": { 353*5ecf7b4eSGunnar Mills "anyOf": [ 354*5ecf7b4eSGunnar Mills { 355*5ecf7b4eSGunnar Mills "$ref": "#/definitions/CSRParameters" 356*5ecf7b4eSGunnar Mills }, 357*5ecf7b4eSGunnar Mills { 358*5ecf7b4eSGunnar Mills "type": "null" 359*5ecf7b4eSGunnar Mills } 360*5ecf7b4eSGunnar Mills ], 361*5ecf7b4eSGunnar Mills "description": "The certificate signing request parameters.", 362*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the parameters used for generating the certificate signing request." 363*5ecf7b4eSGunnar Mills }, 364*5ecf7b4eSGunnar Mills "Description": { 365*5ecf7b4eSGunnar Mills "anyOf": [ 366*5ecf7b4eSGunnar Mills { 367*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Description" 368*5ecf7b4eSGunnar Mills }, 369*5ecf7b4eSGunnar Mills { 370*5ecf7b4eSGunnar Mills "type": "null" 371*5ecf7b4eSGunnar Mills } 372*5ecf7b4eSGunnar Mills ], 373*5ecf7b4eSGunnar Mills "readonly": true 374*5ecf7b4eSGunnar Mills }, 375*5ecf7b4eSGunnar Mills "Enabled": { 376*5ecf7b4eSGunnar Mills "description": "An indication of whether this automatic certificate enrollment is enabled.", 377*5ecf7b4eSGunnar Mills "longDescription": "This property shall indicate whether this automatic certificate enrollment is enabled. If `true`, the implementation shall automatically enroll and renew certificates according to the configuration. If `false`, the implementation shall not perform automatic certificate enrollment operations. If this property is not specified by the client in the create request, it shall be assumed to be `false`.", 378*5ecf7b4eSGunnar Mills "readonly": false, 379*5ecf7b4eSGunnar Mills "type": "boolean" 380*5ecf7b4eSGunnar Mills }, 381*5ecf7b4eSGunnar Mills "EnrollmentState": { 382*5ecf7b4eSGunnar Mills "anyOf": [ 383*5ecf7b4eSGunnar Mills { 384*5ecf7b4eSGunnar Mills "$ref": "#/definitions/EnrollmentState" 385*5ecf7b4eSGunnar Mills }, 386*5ecf7b4eSGunnar Mills { 387*5ecf7b4eSGunnar Mills "type": "null" 388*5ecf7b4eSGunnar Mills } 389*5ecf7b4eSGunnar Mills ], 390*5ecf7b4eSGunnar Mills "description": "The status information for this enrollment.", 391*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the status information for this enrollment including the last operation performed and its status." 392*5ecf7b4eSGunnar Mills }, 393*5ecf7b4eSGunnar Mills "EnrollmentType": { 394*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/CertificateEnrollment.json#/definitions/EnrollmentProtocolType", 395*5ecf7b4eSGunnar Mills "description": "The configured automatic certificate enrollment protocol.", 396*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the configured automatic certificate enrollment protocol.", 397*5ecf7b4eSGunnar Mills "readonly": true 398*5ecf7b4eSGunnar Mills }, 399*5ecf7b4eSGunnar Mills "Id": { 400*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Id", 401*5ecf7b4eSGunnar Mills "readonly": true 402*5ecf7b4eSGunnar Mills }, 403*5ecf7b4eSGunnar Mills "Links": { 404*5ecf7b4eSGunnar Mills "$ref": "#/definitions/Links", 405*5ecf7b4eSGunnar Mills "description": "The links to other resources that are related to this resource.", 406*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain links to resources that are related to but are not contained by, or subordinate to, this resource." 407*5ecf7b4eSGunnar Mills }, 408*5ecf7b4eSGunnar Mills "Name": { 409*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Name", 410*5ecf7b4eSGunnar Mills "readonly": true 411*5ecf7b4eSGunnar Mills }, 412*5ecf7b4eSGunnar Mills "Oem": { 413*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem", 414*5ecf7b4eSGunnar Mills "description": "The OEM extension property.", 415*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the OEM extensions. All values for properties that this object contains shall conform to the Redfish Specification-described requirements." 416*5ecf7b4eSGunnar Mills }, 417*5ecf7b4eSGunnar Mills "RenewBeforeExpiryDays": { 418*5ecf7b4eSGunnar Mills "description": "The number of days before certificate expiry to begin automatic renewal of the certificate.", 419*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the number of days before certificate expiry to begin automatic renewal of the certificate.", 420*5ecf7b4eSGunnar Mills "minimum": 1, 421*5ecf7b4eSGunnar Mills "readonly": false, 422*5ecf7b4eSGunnar Mills "type": [ 423*5ecf7b4eSGunnar Mills "integer", 424*5ecf7b4eSGunnar Mills "null" 425*5ecf7b4eSGunnar Mills ] 426*5ecf7b4eSGunnar Mills }, 427*5ecf7b4eSGunnar Mills "SCEP": { 428*5ecf7b4eSGunnar Mills "anyOf": [ 429*5ecf7b4eSGunnar Mills { 430*5ecf7b4eSGunnar Mills "$ref": "#/definitions/SCEPConfiguration" 431*5ecf7b4eSGunnar Mills }, 432*5ecf7b4eSGunnar Mills { 433*5ecf7b4eSGunnar Mills "type": "null" 434*5ecf7b4eSGunnar Mills } 435*5ecf7b4eSGunnar Mills ], 436*5ecf7b4eSGunnar Mills "description": "SCEP (Simple Certificate Enrollment Protocol) protocol specific configuration for automatic certificate enrollment.", 437*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain configuration specific to the SCEP protocol. This property shall only be present when the `EnrollmentType` property contains `SCEP`." 438*5ecf7b4eSGunnar Mills }, 439*5ecf7b4eSGunnar Mills "ServerURI": { 440*5ecf7b4eSGunnar Mills "description": "The URI of the certificate enrollment server.", 441*5ecf7b4eSGunnar Mills "format": "uri-reference", 442*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the URI of the certificate enrollment server that provides the automatic enrollment service.", 443*5ecf7b4eSGunnar Mills "readonly": false, 444*5ecf7b4eSGunnar Mills "type": "string" 445*5ecf7b4eSGunnar Mills }, 446*5ecf7b4eSGunnar Mills "VerifyCertificate": { 447*5ecf7b4eSGunnar Mills "description": "An indication of whether the service will verify the certificate of the server referenced by the `ServerURI` property.", 448*5ecf7b4eSGunnar Mills "longDescription": "This property shall indicate whether the service will verify the certificate of the server referenced by the `ServerURI` property with the certificates found in the collection referenced by the `Certificates` property. If this property is not supported by the service or specified by the client in the create request, it shall be assumed to be `false`. Regardless of the value of this property, services may perform additional verification based on other factors, such as the configuration of the `SecurityPolicy` resource.", 449*5ecf7b4eSGunnar Mills "readonly": false, 450*5ecf7b4eSGunnar Mills "type": [ 451*5ecf7b4eSGunnar Mills "boolean", 452*5ecf7b4eSGunnar Mills "null" 453*5ecf7b4eSGunnar Mills ] 454*5ecf7b4eSGunnar Mills } 455*5ecf7b4eSGunnar Mills }, 456*5ecf7b4eSGunnar Mills "required": [ 457*5ecf7b4eSGunnar Mills "@odata.id", 458*5ecf7b4eSGunnar Mills "@odata.type", 459*5ecf7b4eSGunnar Mills "Id", 460*5ecf7b4eSGunnar Mills "Name" 461*5ecf7b4eSGunnar Mills ], 462*5ecf7b4eSGunnar Mills "requiredOnCreate": [ 463*5ecf7b4eSGunnar Mills "EnrollmentType", 464*5ecf7b4eSGunnar Mills "ServerURI" 465*5ecf7b4eSGunnar Mills ], 466*5ecf7b4eSGunnar Mills "type": "object" 467*5ecf7b4eSGunnar Mills }, 468*5ecf7b4eSGunnar Mills "EnrollmentState": { 469*5ecf7b4eSGunnar Mills "additionalProperties": false, 470*5ecf7b4eSGunnar Mills "description": "The status information for an enrollment.", 471*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain the status information for an enrollment including the last operation performed and its status.", 472*5ecf7b4eSGunnar Mills "patternProperties": { 473*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 474*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 475*5ecf7b4eSGunnar Mills "type": [ 476*5ecf7b4eSGunnar Mills "array", 477*5ecf7b4eSGunnar Mills "boolean", 478*5ecf7b4eSGunnar Mills "integer", 479*5ecf7b4eSGunnar Mills "number", 480*5ecf7b4eSGunnar Mills "null", 481*5ecf7b4eSGunnar Mills "object", 482*5ecf7b4eSGunnar Mills "string" 483*5ecf7b4eSGunnar Mills ] 484*5ecf7b4eSGunnar Mills } 485*5ecf7b4eSGunnar Mills }, 486*5ecf7b4eSGunnar Mills "properties": { 487*5ecf7b4eSGunnar Mills "LastOperation": { 488*5ecf7b4eSGunnar Mills "anyOf": [ 489*5ecf7b4eSGunnar Mills { 490*5ecf7b4eSGunnar Mills "$ref": "#/definitions/LastOperationType" 491*5ecf7b4eSGunnar Mills }, 492*5ecf7b4eSGunnar Mills { 493*5ecf7b4eSGunnar Mills "type": "null" 494*5ecf7b4eSGunnar Mills } 495*5ecf7b4eSGunnar Mills ], 496*5ecf7b4eSGunnar Mills "description": "The last operation performed by the automatic enrollment service.", 497*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the last operation performed by the automatic enrollment service.", 498*5ecf7b4eSGunnar Mills "readonly": true 499*5ecf7b4eSGunnar Mills }, 500*5ecf7b4eSGunnar Mills "LastOperationStatus": { 501*5ecf7b4eSGunnar Mills "anyOf": [ 502*5ecf7b4eSGunnar Mills { 503*5ecf7b4eSGunnar Mills "$ref": "#/definitions/OperationStatus" 504*5ecf7b4eSGunnar Mills }, 505*5ecf7b4eSGunnar Mills { 506*5ecf7b4eSGunnar Mills "type": "null" 507*5ecf7b4eSGunnar Mills } 508*5ecf7b4eSGunnar Mills ], 509*5ecf7b4eSGunnar Mills "description": "The status of the last operation performed by automatic enrollment service.", 510*5ecf7b4eSGunnar Mills "longDescription": "This enumeration shall describe the status of the last operation performed by automatic enrollment service.", 511*5ecf7b4eSGunnar Mills "readonly": true 512*5ecf7b4eSGunnar Mills }, 513*5ecf7b4eSGunnar Mills "LastOperationTime": { 514*5ecf7b4eSGunnar Mills "description": "The date and time when the last operation was performed.", 515*5ecf7b4eSGunnar Mills "format": "date-time", 516*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the date and time when the last operation was performed by the automatic enrollment service.", 517*5ecf7b4eSGunnar Mills "readonly": true, 518*5ecf7b4eSGunnar Mills "type": [ 519*5ecf7b4eSGunnar Mills "string", 520*5ecf7b4eSGunnar Mills "null" 521*5ecf7b4eSGunnar Mills ] 522*5ecf7b4eSGunnar Mills } 523*5ecf7b4eSGunnar Mills }, 524*5ecf7b4eSGunnar Mills "type": "object" 525*5ecf7b4eSGunnar Mills }, 526*5ecf7b4eSGunnar Mills "LastOperationType": { 527*5ecf7b4eSGunnar Mills "enum": [ 528*5ecf7b4eSGunnar Mills "Renew", 529*5ecf7b4eSGunnar Mills "UpdateAcmeEmail" 530*5ecf7b4eSGunnar Mills ], 531*5ecf7b4eSGunnar Mills "enumDescriptions": { 532*5ecf7b4eSGunnar Mills "Renew": "Certificate renewal operation.", 533*5ecf7b4eSGunnar Mills "UpdateAcmeEmail": "Update ACME email operation. Applicable only when the enrollment protocol is ACME." 534*5ecf7b4eSGunnar Mills }, 535*5ecf7b4eSGunnar Mills "type": "string" 536*5ecf7b4eSGunnar Mills }, 537*5ecf7b4eSGunnar Mills "Links": { 538*5ecf7b4eSGunnar Mills "additionalProperties": false, 539*5ecf7b4eSGunnar Mills "description": "The links to other resources that are related to this resource.", 540*5ecf7b4eSGunnar Mills "longDescription": "This Redfish Specification-described type shall contain links to resources that are related to but are not contained by, or subordinate to, this resource.", 541*5ecf7b4eSGunnar Mills "patternProperties": { 542*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 543*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 544*5ecf7b4eSGunnar Mills "type": [ 545*5ecf7b4eSGunnar Mills "array", 546*5ecf7b4eSGunnar Mills "boolean", 547*5ecf7b4eSGunnar Mills "integer", 548*5ecf7b4eSGunnar Mills "number", 549*5ecf7b4eSGunnar Mills "null", 550*5ecf7b4eSGunnar Mills "object", 551*5ecf7b4eSGunnar Mills "string" 552*5ecf7b4eSGunnar Mills ] 553*5ecf7b4eSGunnar Mills } 554*5ecf7b4eSGunnar Mills }, 555*5ecf7b4eSGunnar Mills "properties": { 556*5ecf7b4eSGunnar Mills "CACertificates": { 557*5ecf7b4eSGunnar Mills "description": "The list of server certificates for the server referenced by the `ServerURI` property.", 558*5ecf7b4eSGunnar Mills "items": { 559*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate" 560*5ecf7b4eSGunnar Mills }, 561*5ecf7b4eSGunnar Mills "longDescription": "The list of references to server certificates for the server referenced by the `ServerURI` property. Members of this array shall reference members the `EnrollmentCACertificates` property in the `CertificateService` resource. If `VerifyCertificate` contains `true` and this property is present, services shall compare the certificates in this list with the certificate obtained during handshaking with the enrollment server in order to verify the identity of the enrollment server. If `VerifyCertificate` contains `true` and this property is absent, services shall compare the certificates in the `EnrollmentCACertificates` property in the `CertificateService` resource with the certificate obtained during handshaking with the enrollment server. If the server cannot be verified, the service shall fail the automatic certificate enrollment. If `VerifyCertificate` is `false`, the service shall not perform certificate verification. Regardless of the contents of this list and the `EnrollmentCACertificates` property in the `CertificateService` resource, services may perform additional verification based on other factors, such as the configuration of the `SecurityPolicy` resource.", 562*5ecf7b4eSGunnar Mills "readonly": false, 563*5ecf7b4eSGunnar Mills "type": "array" 564*5ecf7b4eSGunnar Mills }, 565*5ecf7b4eSGunnar Mills "CACertificates@odata.count": { 566*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/odata-v4.json#/definitions/count" 567*5ecf7b4eSGunnar Mills }, 568*5ecf7b4eSGunnar Mills "EnrolledCertificate": { 569*5ecf7b4eSGunnar Mills "anyOf": [ 570*5ecf7b4eSGunnar Mills { 571*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Certificate.json#/definitions/Certificate" 572*5ecf7b4eSGunnar Mills }, 573*5ecf7b4eSGunnar Mills { 574*5ecf7b4eSGunnar Mills "type": "null" 575*5ecf7b4eSGunnar Mills } 576*5ecf7b4eSGunnar Mills ], 577*5ecf7b4eSGunnar Mills "description": "The link to the enrolled certificate.", 578*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain a link to the enrolled certificate.", 579*5ecf7b4eSGunnar Mills "readonly": true 580*5ecf7b4eSGunnar Mills }, 581*5ecf7b4eSGunnar Mills "EnrolledCertificateLocation": { 582*5ecf7b4eSGunnar Mills "anyOf": [ 583*5ecf7b4eSGunnar Mills { 584*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/CertificateCollection.json#/definitions/CertificateCollection" 585*5ecf7b4eSGunnar Mills }, 586*5ecf7b4eSGunnar Mills { 587*5ecf7b4eSGunnar Mills "type": "null" 588*5ecf7b4eSGunnar Mills } 589*5ecf7b4eSGunnar Mills ], 590*5ecf7b4eSGunnar Mills "description": "The link to the certificate collection where the enrolled certificate will be installed.", 591*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain a link to a resource collection of type `CertificateCollection` where the enrolled certificate will be installed.", 592*5ecf7b4eSGunnar Mills "readonly": false 593*5ecf7b4eSGunnar Mills }, 594*5ecf7b4eSGunnar Mills "Oem": { 595*5ecf7b4eSGunnar Mills "$ref": "http://redfish.dmtf.org/schemas/v1/Resource.json#/definitions/Oem", 596*5ecf7b4eSGunnar Mills "description": "The OEM extension property.", 597*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements." 598*5ecf7b4eSGunnar Mills } 599*5ecf7b4eSGunnar Mills }, 600*5ecf7b4eSGunnar Mills "requiredOnCreate": [ 601*5ecf7b4eSGunnar Mills "EnrolledCertificateLocation" 602*5ecf7b4eSGunnar Mills ], 603*5ecf7b4eSGunnar Mills "type": "object" 604*5ecf7b4eSGunnar Mills }, 605*5ecf7b4eSGunnar Mills "OemActions": { 606*5ecf7b4eSGunnar Mills "additionalProperties": true, 607*5ecf7b4eSGunnar Mills "description": "The available OEM-specific actions for this resource.", 608*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain the available OEM-specific actions for this resource.", 609*5ecf7b4eSGunnar Mills "patternProperties": { 610*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 611*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 612*5ecf7b4eSGunnar Mills "type": [ 613*5ecf7b4eSGunnar Mills "array", 614*5ecf7b4eSGunnar Mills "boolean", 615*5ecf7b4eSGunnar Mills "integer", 616*5ecf7b4eSGunnar Mills "number", 617*5ecf7b4eSGunnar Mills "null", 618*5ecf7b4eSGunnar Mills "object", 619*5ecf7b4eSGunnar Mills "string" 620*5ecf7b4eSGunnar Mills ] 621*5ecf7b4eSGunnar Mills } 622*5ecf7b4eSGunnar Mills }, 623*5ecf7b4eSGunnar Mills "properties": {}, 624*5ecf7b4eSGunnar Mills "type": "object" 625*5ecf7b4eSGunnar Mills }, 626*5ecf7b4eSGunnar Mills "OperationStatus": { 627*5ecf7b4eSGunnar Mills "enum": [ 628*5ecf7b4eSGunnar Mills "Success", 629*5ecf7b4eSGunnar Mills "Failed", 630*5ecf7b4eSGunnar Mills "InProgress", 631*5ecf7b4eSGunnar Mills "Unknown" 632*5ecf7b4eSGunnar Mills ], 633*5ecf7b4eSGunnar Mills "enumDescriptions": { 634*5ecf7b4eSGunnar Mills "Failed": "The operation failed.", 635*5ecf7b4eSGunnar Mills "InProgress": "The operation is in progress.", 636*5ecf7b4eSGunnar Mills "Success": "The operation completed successfully.", 637*5ecf7b4eSGunnar Mills "Unknown": "The operation status is unknown." 638*5ecf7b4eSGunnar Mills }, 639*5ecf7b4eSGunnar Mills "type": "string" 640*5ecf7b4eSGunnar Mills }, 641*5ecf7b4eSGunnar Mills "SCEPConfiguration": { 642*5ecf7b4eSGunnar Mills "additionalProperties": false, 643*5ecf7b4eSGunnar Mills "description": "SCEP protocol specific configuration.", 644*5ecf7b4eSGunnar Mills "longDescription": "This type shall contain configuration specific to the SCEP protocol.", 645*5ecf7b4eSGunnar Mills "patternProperties": { 646*5ecf7b4eSGunnar Mills "^([a-zA-Z_][a-zA-Z0-9_]*)?@(odata|Redfish|Message)\\.[a-zA-Z_][a-zA-Z0-9_]*$": { 647*5ecf7b4eSGunnar Mills "description": "This property shall specify a valid odata or Redfish property.", 648*5ecf7b4eSGunnar Mills "type": [ 649*5ecf7b4eSGunnar Mills "array", 650*5ecf7b4eSGunnar Mills "boolean", 651*5ecf7b4eSGunnar Mills "integer", 652*5ecf7b4eSGunnar Mills "number", 653*5ecf7b4eSGunnar Mills "null", 654*5ecf7b4eSGunnar Mills "object", 655*5ecf7b4eSGunnar Mills "string" 656*5ecf7b4eSGunnar Mills ] 657*5ecf7b4eSGunnar Mills } 658*5ecf7b4eSGunnar Mills }, 659*5ecf7b4eSGunnar Mills "properties": { 660*5ecf7b4eSGunnar Mills "ChallengePassword": { 661*5ecf7b4eSGunnar Mills "description": "The challenge password for SCEP enrollment.", 662*5ecf7b4eSGunnar Mills "longDescription": "This property shall contain the challenge password used for SCEP enrollment. This property shall be `null` in responses.", 663*5ecf7b4eSGunnar Mills "readonly": false, 664*5ecf7b4eSGunnar Mills "type": [ 665*5ecf7b4eSGunnar Mills "string", 666*5ecf7b4eSGunnar Mills "null" 667*5ecf7b4eSGunnar Mills ], 668*5ecf7b4eSGunnar Mills "writeOnly": true 669*5ecf7b4eSGunnar Mills } 670*5ecf7b4eSGunnar Mills }, 671*5ecf7b4eSGunnar Mills "type": "object" 672*5ecf7b4eSGunnar Mills } 673*5ecf7b4eSGunnar Mills }, 674*5ecf7b4eSGunnar Mills "language": "en", 675*5ecf7b4eSGunnar Mills "owningEntity": "DMTF", 676*5ecf7b4eSGunnar Mills "release": "2025.3", 677*5ecf7b4eSGunnar Mills "title": "#CertificateEnrollment.v1_0_0.CertificateEnrollment" 678*5ecf7b4eSGunnar Mills}