cloudyred
Enthusiast
Enthusiast

How to perform export and import of keystores between environments / to another vro via rest (or other)?

Edit: Edited the title as adding and deleting keys / certs via either rest or vro script is fine, had just mentioned the management of keys as an umbrella for this question.

iilievIlianIliev​ paging to see if any of the VMware folks can provide some insight?

No idea how you would do this without trying to dump keystore content to a resource element and try and pass that around vros, recreating the keystores from that.

I've looked at the control-center api. You can download package signing keystore.

vro7601:~ # curl -k --output '1.keystore' -X POST --header 'Content-Type: application/x-www-form-urlencoded' --header 'Accept: application/x-gzip' -d 'password=Password123!' -u 'root:Password123!' 'https://vro7601.vlab.local:8283/vco-controlcenter/api/certificates/export'

  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current

                                 Dload  Upload   Total   Spent    Left  Speed

100  8287    0  8262  100    25  16657     50 --:--:-- --:--:-- --:--:-- 16674

Can't seem to download a keystore any other way.

vro7601:~ # curl -k -X GET --header 'Accept: application/json' -u 'root:Password123!' 'https://vro7601.vlab.local:8283/vco-controlcenter/api/ssl/import/keystore/cakeystore-id'

{"error":null,"warning":null,"id":"cakeystore-id","sslCertificate":null}

What ways has anyone successfully managed keystores?

Mainly looking for vRO 7.5/7.6 but would be interested to see if anyone tackled it in 8.1 too.

Cheers,

Red

Message was edited by: Redmond Hallahan

0 Kudos
1 Reply
eocallaghan7319
Contributor
Contributor

Just wondering how any other vro users are working with keys, certs and keystores?

0 Kudos