Skip to main content

Create Credential

We need to create a username/password Credential to access the MS Windows server. This Credential is needed in order to establish authorized connection with the MS CA.

Create Credential using the API

Credential can be created using the Credential API. However, before creating it, we need know the required Attributes for the Credential. We can get that using the following request:

curl -X GET \
  --cacert [ca-cert] \
  --cert [client-cert] \
  --cert-type [type] \
  -H "Accept: application/json" \
  https://[domain]:[port]/api/v1/connectors/93f74f2d-1bc7-4c15-a33e-0bf773b3955a/credentialProvider/Basic/attributes
  #https://[domain]:[port]/api/v1/connectors/{uuid}/{functionGroup}/{kind}/attributes

This returns the list of applicable attributes for the Credential kind, such as:

[
    {
        "uuid": "fe2d6d35-fb3d-4ea0-9f0b-7e39be93beeb",
        "name": "username",
        "label": "Username",
        "type": "STRING",
        "required": true,
        "readOnly": false,
        "visible": true,
        "list": false,
        "description": "Username",
        "multiSelect": false,
        "group": "Basic"
    },
    {
        "uuid": "04506d45-c865-4ddc-b6fc-117ee5d5c8e7",
        "name": "password",
        "label": "Password",
        "type": "SECRET",
        "required": true,
        "readOnly": false,
        "visible": true,
        "list": false,
        "description": "Password",
        "multiSelect": false,
        "group": "Basic"
    }
]

Knowing the attributes, we can create the Credential using the following request:

curl -X POST \
  --cacert [ca-cert] \
  --cert [client-cert] \
  --cert-type [type] \
  -H "Content-Type: application/json" \
  -H "Accept: application/json" \
  --data '
  {
    "name": "MS ADCS Basic Credential",
    "connectorUuid": "93f74f2d-1bc7-4c15-a33e-0bf773b3955a",
    "kind": "Basic",
    "attributes": [
      {
        "name": "username",
        "content": {
          "value": "username"
        }
      },
      {
        "name": "password",
        "content": {
          "value": "password"
        }
      }
    ]
  }' \
  https://[domain]:[port]/api/v1/credentials

When the Credential is successfully created, its uuid is sent back:

{
  "uuid": "4c59aecd-1edc-47ea-b3cb-96a2468315bc"
}

Create Credential using the Web Interface

You can create the Credential required for MS ADCS Connector using the following steps:

  1. Log in to the Administration Interface https://[domain]:[port]/administrator
  2. Click Credentails in the left menu
  3. Click Add new Credential (plus symbol )
  4. Fill the columns with the attributes:
    • Credential name: MS ADCS Basic Credential
    • Credential Provider: Common Credential Provider
    • Type: Basic
    • Username: your system user name
    • Password: your system password
  5. Click Create

The MS ADCS Basic Credential is created.