URI for Certificate Chain

You can show those intermediate and CA certificates as additional members in that same collection. As part of the recent 2021.2 schema bundle, the Certificate resource was updated so it's possible to express the signing chain in each of the Certificate resources with the new "Subjects" and "Issuer" properties found inside of "Links".

mraineri can you give an example of how to use '{"Links":{"Issuer":""}}' to setup the relationships between the root, intermediate, and "leaf" certificates? I'm trying the following command with a redfish server with a RootService RedfishVersion of 1.11.0, which [if I'm reading the Resource and Schema Guide correctly] means that this is redfish release 2021.2, and so the Certificate schema would be v1.4, which supports the Links property.


$ curl -k -u "${USER}:${PASSWORD}" 'https://MYHOST/redfish/v1/Managers/BMC/NetworkProtocol/HTTPS/Certificates' -H 'Content-Type: application/json' --data "{\"CertificateString\":\"$(cat cert_intermediate.pem)\",\"CertificateType\":\"PEM\",\"Links\":{\"Subjects\":[{\"@odata.id\":\"/redfish/v1/Managers/BMC/NetworkProtocol/HTTPS/Certificates/1\"}]}}" -s | jq .
{
"error": {
"@message.ExtendedInfo": [
{
"@odata.type": "#Message.v1_0_8.Message",
"Message": "The property Links is not in the list of valid properties for the resource.",
"MessageArgs": [
"Links"
],
"MessageId": "Base.1.12.PropertyUnknown",
"RelatedProperties": [
"#/Links"
],
"Resolution": "Remove the unknown property from the request body and resubmit the request if the operation failed.",
"Severity": "Warning"
}
],
"code": "Base.1.12.PropertyUnknown",
"message": "The property Links is not in the list of valid properties for the resource."
}
}