Create the SAML default metadata configuration
Suggest changes
PDFs
POST /security/authentication/cluster/saml-sp/default-metadata
Introduced In: 9.17
Creates the SAML default metadata configuration. Note that common_name is mutually exclusive with serial_number and ca in POST requests.
Optional properties
-
certificate -
host
Parameters
| Name | Type | In | Required | Description |
|---|---|---|---|---|
return_timeout |
integer |
query |
False |
The number of seconds to allow the call to execute before returning. When doing a POST, PATCH, or DELETE operation on a single record, the default is 0 seconds. This means that if an asynchronous operation is started, the server immediately returns HTTP code 202 (Accepted) along with a link to the job. If a non-zero value is specified for POST, PATCH, or DELETE operations, ONTAP waits that length of time to see if the job completes so it can return something other than 202.
|
Request Body
| Name | Type | Description |
|---|---|---|
certificate |
||
host |
string |
The SAML service provider host. |
scope |
string |
Scope of the entity. Set to "cluster" for cluster owned objects and to "svm" for SVM owned objects. |
Example request
{
"certificate": {
"ca": "string",
"common_name": "cluster1",
"serial_number": "1506B24A94F566BA"
},
"host": "string",
"scope": "string"
}Response
Status: 202, Accepted| Name | Type | Description |
|---|---|---|
job |
Example response
{
"job": {
"uuid": "string"
}
}Headers
| Name | Description | Type |
|---|---|---|
Location |
Useful for tracking the resource location |
string |
Response
Status: 201, CreatedError
Status: DefaultONTAP Error Response Codes
| Error Code | Description |
|---|---|
12320794 |
Invalid host parameter for default metadata generation. The host parameter must be the cluster management interface's IP address. If the cluster management interface is not available, the node management interface's IP address must be used. |
12320805 |
The certificate information provided does not match any installed certificates. |
12320806 |
The certificate information entered does not match any installed certificates. |
12320820 |
No certificate is installed with the specified |
12320821 |
No certificate is installed with the specified |
12320825 |
SAML configuration already exists. Cannot create the metadata when SAML configuration is already present. |
12320831 |
Default metadata configuration already exists. |
Also see the table of common errors in the Response body overview section of this documentation.
Definitions
See Definitions
href
| Name | Type | Description |
|---|---|---|
href |
string |
_links
certificate
| Name | Type | Description |
|---|---|---|
ca |
string |
Server certificate issuing certificate authority (CA). This cannot be used with the server certificate common name. |
common_name |
string |
Server certificate common name. This cannot be used with the certificate authority (CA) or serial_number. |
serial_number |
string |
Server certificate serial number. This cannot be used with the server certificate common name. |
security_saml_def_metadata
| Name | Type | Description |
|---|---|---|
certificate |
||
host |
string |
The SAML service provider host. |
scope |
string |
Scope of the entity. Set to "cluster" for cluster owned objects and to "svm" for SVM owned objects. |
job_link
| Name | Type | Description |
|---|---|---|
uuid |
string |
The UUID of the asynchronous job that is triggered by a POST, PATCH, or DELETE operation. |
error_arguments
| Name | Type | Description |
|---|---|---|
code |
string |
Argument code |
message |
string |
Message argument |
returned_error
| Name | Type | Description |
|---|---|---|
arguments |
array[error_arguments] |
Message arguments |
code |
string |
Error code |
message |
string |
Error message |
target |
string |
The target parameter that caused the error. |