This section explains the procedure for deleting certificates for SSL-VPN.
Perform this procedure only if you previously referred to SSL-VPN connection (V2 service/self-signed certificate) and created an SSL-VPN connection.
The basic procedure for deletion is the reverse of the procedure for creation.
Warning:
During deletion of certificates, it is necessary to individually delete the CA certificates, private keys for server certificates, server certificates, and DH keys.
-
Configure the following.
$ TMP_CRTKEY_NAME=<DH Key ID>
-
Execute the following API.
$ curl -X DELETE -sS -i $KEYMANAGEMENT/v1/$PROJECT_ID/secrets/\
$TMP_CRTKEY_NAME -H "X-Auth-Token: $OS_AUTH_TOKEN"
HTTP/1.1 204 No Content
X-Fcx-Endpoint-Request: EXECUTED_REQ<ID>
Date: Www, DD MMM yyyy hh:mm:ss GMT
-
Configure the following.
$ TMP_CRTKEY_NAME=<ID of Private Key for Server Certificate>
-
Execute the following API.
$ curl -X DELETE -sS -i $KEYMANAGEMENT/v1/$PROJECT_ID/secrets/\
$TMP_CRTKEY_NAME -H "X-Auth-Token: $OS_AUTH_TOKEN"
HTTP/1.1 204 No Content
X-Fcx-Endpoint-Request: EXECUTED_REQ<ID>
Date: Www, DD MMM yyyy hh:mm:ss GMT
-
Configure the following.
$ TMP_CRTKEY_NAME=<Server Certificate ID>
-
Execute the following API.
$ curl -X DELETE -sS -i $KEYMANAGEMENT/v1/$PROJECT_ID/secrets/\
$TMP_CRTKEY_NAME -H "X-Auth-Token: $OS_AUTH_TOKEN"
HTTP/1.1 204 No Content
X-Fcx-Endpoint-Request:EXECUTED_REQ<ID>
Date: Www, DD MMM yyyy hh:mm:ss GMT
-
Configure the following.
$ TMP_CRTKEY_NAME=<CA Certificate ID>
-
Execute the following API.
$ curl -X DELETE -sS -i $KEYMANAGEMENT/v1/$PROJECT_ID/secrets/\
$TMP_CRTKEY_NAME -H "X-Auth-Token: $OS_AUTH_TOKEN"
HTTP/1.1 204 No Content
X-Fcx-Endpoint-Request: EXECUTED_REQ<ID>
Date: Www, DD MMM yyyy hh:mm:ss GMT