Retrieve AKVs configured for all clusters and SVMs

security key-manager external azure show

Learn more

DOC /security/azure-key-vaults

Parameters

Name	Type	In	Required	Description
key_id	string	query	False	Filter by key_id
svm.uuid	string	query	False	Filter by svm.uuid
svm.name	string	query	False	Filter by svm.name
client_id	string	query	False	Filter by client_id
tenant_id	string	query	False	Filter by tenant_id
uuid	string	query	False	Filter by uuid
name	string	query	False	Filter by name
state.message	string	query	False	Filter by state.message
state.cluster_state	boolean	query	False	Filter by state.cluster_state
state.code	integer	query	False	Filter by state.code
scope	string	query	False	Filter by scope
fields	array[string]	query	False	Specify the fields to return.
max_records	integer	query	False	Limit the number of records returned.
return_timeout	integer	query	False	The number of seconds to allow the call to execute before returning. When iterating over a collection, the default is 15 seconds. ONTAP returns earlier if either max records or the end of the collection is reached.
return_records	boolean	query	False	The default is true for GET calls. When set to false, only the number of records is returned.
order_by	array[string]	query	False	Order results by specified fields and optional [asc

Name

Type

In

Required

Description

key_id

string

query

False

Filter by key_id

svm.uuid

string

query

False

Filter by svm.uuid

svm.name

string

query

False

Filter by svm.name

client_id

string

query

False

Filter by client_id

tenant_id

string

query

False

Filter by tenant_id

uuid

string

query

False

Filter by uuid

name

string

query

False

Filter by name

state.message

string

query

False

Filter by state.message

state.cluster_state

boolean

query

False

Filter by state.cluster_state

state.code

integer

query

False

Filter by state.code

scope

string

query

False

Filter by scope

fields

array[string]

query

False

Specify the fields to return.

max_records

integer

query

False

Limit the number of records returned.

return_timeout

integer

query

False

The number of seconds to allow the call to execute before returning. When iterating over a collection, the default is 15 seconds. ONTAP returns earlier if either max records or the end of the collection is reached.

return_records

boolean

query

False

The default is true for GET calls. When set to false, only the number of records is returned.

order_by

array[string]

query

False

Order results by specified fields and optional [asc

Response

Status: 200, Ok

Name	Type	Description
_links	_links
num_records	integer	Number of records
records	array[azure_key_vault]

Name

Type

Description

_links

num_records

integer

Number of records

records

array[azure_key_vault]

Example response

{
  "_links": {
    "next": {
      "href": "/api/resourcelink"
    },
    "self": {
      "href": "/api/resourcelink"
    }
  },
  "records": {
    "_links": {
      "self": {
        "href": "/api/resourcelink"
      }
    },
    "client_id": "aaaaaaaa-bbbb-aaaa-bbbb-aaaaaaaaaaaa",
    "client_secret": "abcdef",
    "key_id": "https://keyvault1.vault.azure.net/keys/key1/a8e619fd8f234db3b0b95c59540e2a74",
    "name": "https://kmip-akv-keyvault.vault.azure.net/",
    "scope": "svm",
    "state": {
      "code": 346758,
      "message": "AKV key protection is unavailable in following nodes - node1, node2."
    },
    "svm": {
      "_links": {
        "self": {
          "href": "/api/resourcelink"
        }
      },
      "name": "svm1",
      "uuid": "02c9e252-41be-11e9-81d5-00a0986138f7"
    },
    "tenant_id": "zzzzzzzz-yyyy-zzzz-yyyy-zzzzzzzzzzzz",
    "uuid": "1cd8a442-86d1-11e0-ae1c-123478563412"
  }
}

Error

Status: Default, Error

Name	Type	Description
error	error

Name

Type

Description

error

Example error

{
  "error": {
    "arguments": {
      "code": "string",
      "message": "string"
    },
    "code": "4",
    "message": "entry doesn't exist",
    "target": "uuid"
  }
}

Definitions

See Definitions

href

Name	Type	Description
href	string

Name

Type

Description

href

string

_links

Name	Type	Description
next	href
self	href

Name

Type

Description

self

href

_links

Name	Type	Description
self	href

Name

Type

Description

self

href

state

Indicates whether the AKV key protection is available cluster wide.

Name	Type	Description
cluster_state	boolean	Set to true when AKV key protection is available on all nodes of the cluster.
code	integer	Code corresponding to the status message. Returns a 0 if AKV key protection is available in all nodes of the cluster.
message	string	Error message set when cluster availability is false.

Name

Type

Description

cluster_state

boolean

Set to true when AKV key protection is available on all nodes of the cluster.

code

integer

Code corresponding to the status message. Returns a 0 if AKV key protection is available in all nodes of the cluster.

message

string

Error message set when cluster availability is false.

svm

Name	Type	Description
_links	_links
name	string	The name of the SVM.
uuid	string	The unique identifier of the SVM.

Name

Type

Description

_links

name

string

The name of the SVM.

uuid

string

The unique identifier of the SVM.

azure_key_vault

Name	Type	Description
_links	_links
client_id	string	Application client ID of the deployed Azure application with appropriate access to an AKV.
client_secret	string	Password used by the application to prove its identity to AKV.
key_id	string	Key Identifier of AKV key encryption key.
name	string	Name of the deployed AKV that will be used by ONTAP for storing keys. example: https://kmip-akv-keyvault.vault.azure.net/ format: uri
scope	string	Set to "svm" for interfaces owned by an SVM. Otherwise, set to "cluster".
state	state	Indicates whether the AKV key protection is available cluster wide.
svm	svm
tenant_id	string	Directory (tenant) ID of the deployed Azure application with appropriate access to an AKV.
uuid	string	A unique identifier for the Azure Key Vault (AKV).

Name

Type

Description

_links

client_id

string

Application client ID of the deployed Azure application with appropriate access to an AKV.

client_secret

string

Password used by the application to prove its identity to AKV.

key_id

string

Key Identifier of AKV key encryption key.

name

string

Name of the deployed AKV that will be used by ONTAP for storing keys.

example: https://kmip-akv-keyvault.vault.azure.net/
format: uri

scope

string

Set to "svm" for interfaces owned by an SVM. Otherwise, set to "cluster".

state

Indicates whether the AKV key protection is available cluster wide.

svm

tenant_id

string

Directory (tenant) ID of the deployed Azure application with appropriate access to an AKV.

uuid

string

A unique identifier for the Azure Key Vault (AKV).

error_arguments

Name	Type	Description
code	string	Argument code
message	string	Message argument

Name

Type

Description

code

string

Argument code

message

string

Message argument

error

Name	Type	Description
arguments	array[error_arguments]	Message arguments
code	string	Error code
message	string	Error message
target	string	The target parameter that caused the error.

Name

Type

Description

arguments

array[error_arguments]

Message arguments

code

string

Error code

message

string

Error message

target

string

The target parameter that caused the error.

Retrieve AKVs configured for all clusters and SVMs

Creating your file...

Related ONTAP commands

Learn more

Parameters

Response

Error

Definitions