title | description | ms.localizationpriority | author | ms.subservice | doc_type |
---|---|---|---|---|---|
Create certificateBasedAuthConfiguration |
Use this API to create a new certificateBasedAuthConfiguration. |
medium |
vimrang |
entra-sign-in |
apiPageType |
Namespace: microsoft.graph
[!INCLUDE beta-disclaimer]
Create a new certificateBasedAuthConfiguration object.
Note
Only a single instance of a certificateBasedAuthConfiguration can be created (the collection can only have one member). It always has a fixed ID with a value of '29728ade-6ae4-4ee9-9103-412912537da5'.
[!INCLUDE national-cloud-support]
Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions only if your app requires it. For details about delegated and application permissions, see Permission types. To learn more about these permissions, see the permissions reference.
[!INCLUDE permissions-table]
For delegated scenarios, the calling user must have the Global Administrator Microsoft Entra role.
POST /organization/{id}/certificateBasedAuthConfiguration
Name | Description |
---|---|
Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
Content-Type | application/json |
The following properties are required to create the certificateBasedAuthConfiguration object.
Property | Type | Description |
---|---|---|
certificateAuthorities | certificateAuthority collection | Collection of certificate authorities that creates a trusted certificate chain. Each member of the collection must contain certificate and isRootAuthority properties. |
If successful, this method returns 201 Created
response code and a new certificateBasedAuthConfiguration object in the response body.
The following example shows a request.
POST https://graph.microsoft.com/beta/organization/{id}/certificateBasedAuthConfiguration
Content-type: application/json
{
"certificateAuthorities": [
{
"isRootAuthority": true,
"certificate": "Binary"
}
]
}
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
Note: The response object shown here might be shortened for readability.
HTTP/1.1 201 Created
Content-type: application/json
{
"id": "id-value",
"certificateAuthorities": [
{
"isRootAuthority": true,
"certificate": "Binary",
"issuer": "issuer-value",
"issuerSki": "issuerSki-value"
}
]
}