- Is there a way to change the trust profile name in APIC-EM PKI broker or create a new one. In the documentation I could only find the following information:
- trustProfileName (string): Name of trust-profile (must already exist). Default: sdn-network-infra-iwan,
What are you trying to create trust profile for.iWAN or something else.
For iWAN, the APIC-EM iWAN App will create the trust point for you, through PKI broker. You don't have to explicitly create it. It's a part of Cisco validated design (CVD) for iWAN.
For anything else, you can use corresponding REST API (POST) to create one. Here are the APIs for PKI broker, exposed in swagger:
- Not using iWAN app but using the REST API with a script for the trustpoint configs. The script is creating a trustpoint for each device with a API call and always used the sdn-network-infra-iwan name but it would be nice to have another name for it as iWAN is not used. E.g. a trust profile with the name "my-ipsec-ca" for the trustpoints.
Not able to modify this name within APICEM- neither in the APIs nor in the GUI.
Currently only the default "sdn-network-infra-iwan" profile is supported for the /trust-point POST API.
Please sign in to leave a comment.