Help Center/ IAM Identity Center/ API Reference/ API/ Application Certificate Management/ Creating an Application Instance Certificate
Updated on 2025-08-21 GMT+08:00

Creating an Application Instance Certificate

Function

This API is used to create an application instance certificate. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.

URI

POST /v1/instances/{instance_id}/application-instances/{application_instance_id}/certificates

Table 1 Path parameters

Parameter

Mandatory

Type

Description

instance_id

Yes

String

Globally unique ID of an IAM Identity Center instance.

application_instance_id

Yes

String

Application instance ID. Its prefix is app-ins-.

Request Parameters

Table 2 Parameters in the request header

Parameter

Mandatory

Type

Description

X-Security-Token

No

String

Security token (session token) of your temporary security credentials. If a temporary security credential is used, this header is required.

Response Parameters

Status code: 201

Table 3 Parameters in the response body

Parameter

Type

Description

application_instance_certificate

CertificateDto object

Application certificate.

Table 4 CertificateDto

Parameter

Type

Description

algorithm

String

Certificate generation algorithm.

certificate

String

Application certificate.

certificate_id

String

Application certificate ID.

expiry_date

Long

Certificate expiration time.

status

String

Certificate status.

key_size

String

Key size.

issue_date

Long

Certificate generation time.

Status code: 400

Table 5 Parameters in the response body

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

request_id

String

Unique ID of a request.

Status code: 403

Table 6 Parameters in the response body

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

request_id

String

Unique ID of a request.

encoded_authorization_message

String

Encrypted error message.

Status code: 409

Table 7 Parameters in the response body

Parameter

Type

Description

error_code

String

Error code.

error_msg

String

Error message.

request_id

String

Unique ID of a request.

Example Request

Creating an application instance certificate

POST https://{hostname}/v1/instances/{instance_id}/application-instances/{application_instance_id}/certificates

Example Response

Status code: 201

Successful.

{
  "application_instance_certificate" : {
    "algorithm" : "SHA256withRSA",
    "certificate" : "-----BEGIN CERTIFICATE-----\r\nMIIEyzCCAzOgAwI*******lQxBvg==\r\n-----END CERTIFICATE-----",
    "certificate_id" : "cer-4d47a100-0144-492d-8aa5-9460c6aadc55",
    "expiry_date" : 1912291200000,
    "status" : "INACTIVE",
    "key_size" : "3072",
    "issue_date" : 1754548061000
  }
}

Status Codes

Status Code

Description

201

Successful.

400

Bad request.

403

Forbidden.

409

Conflict.

Error Codes

For details, see Error Codes.