| getsslzerotouchparamResult Structure Definition |
The getsslzerotouchparamResult structure defines the return type for getsslzerotouchparam API. |
Syntax |
Members |
rc |
If the method succeeds, rc is 0 else rc > 0. Values above 0x8000 indicate Warnings. |
message |
If the method succeeds, message is NULL else message contains Error/Warning message. |
sslzerotouchparamList |
List of sslzerotouchparams |
| sslzerotouchparam Structure Definition |
The sslzerotouchparam structure defines the actual return type values for getsslzerotouchparam API. |
Syntax |
Members |
zerotouch |
Flag to enable or disable the zero touch certificate management. |
remoteserverip |
Certfetcher daemon connects to this IP to fetch certificates and keys. |
keyfilename |
Name of the private key file which ADM creates on NetScaler while enabling zero touch certificate management. |
passphrase |
Password to the private key file. |
admconnectivitystatus |
Status of the request sent by the certfetcher daemon to the remote server. |
httpstatuscode |
HTTP code received by the certfetcher daemon from the remote server. |
requesttype |
Type of the request sent by the certfetcher daemon to the remote server. |
requesttimestamp |
Timestamp at which request was sent by the certfetcher daemon to the remote server. |
nextrequesttime |
Timestamp at which next polling request will be sent by the certfetcher daemon to the remote server. |
ocspcachetimeout |
Timeout(in minutes) for caching the OCSP response. |
ocspbatchingdepth |
Number of certificates to batch together into one OCSP request. Batching avoids overloading the OCSP responder. A value of 1 signifies that each request is queried independently. For a value greater than 1, specify a timeout (batching delay) to avoid inordinately delaying the processing of a single certificate. |
ocspbatchingdelay |
Maximum time, in milliseconds, to wait to accumulate OCSP requests to batch. Does not apply if the Batching Depth is 1. |
ocspresptimeout |
Time, in milliseconds, to wait for an OCSP response. When this time elapses, an error message appears or the transaction is forwarded, depending on the settings on the virtual server. Includes Batching Delay time. |
ocspurlresolvetimeout |
Time, in milliseconds, to wait for an OCSP URL Resolution. When this time elapses, an error message appears or the transaction is forwarded, depending on the settings on the virtual server. |
ocsptrustresponder |
If trustResponder is set to YES, signature verification will be skipped for the OCSP response |
ocspproducedattimeskew |
Time, in seconds, for which the Citrix ADC waits before considering the response as invalid. The response is considered invalid if the Produced At time stamp in the OCSP response exceeds or precedes the current Citrix ADC clock time by the amount of time specified. |
ocspusenonce |
Enable the OCSP nonce extension, which is designed to prevent replay attacks. |
ocsphttpmethod |
HTTP method used to send ocsp request. POST is the default httpmethod. If request length is > 255, POST wil be used even if GET is set as httpMethod |
_nextgenapiresource |
See Also |