BootCertificates
更新时间: 2026/06/26
在Gitcode上查看源码

ResourceDefinition

uris

  • /redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates

properties

BIOS证书资源字段说明表

名称类型是否只读取值范围/枚举值说明
@odata.contextstringtrue-Bios证书资源OData描述
@odata_idstringtrue-Bios证书资源的访问路径
Idstringtrue-Bios证书资源的ID
Namestringtrue-BIOS证书资源的名称
Certificatesobjecttrue-Bios已生效的所有证书
SecureBootobjecttrue-用于SecureBoot的证书
dbarraytrue-SecureBoot的证书类型
dbxarraytrue-SecureBoot的证书类型
Bootobjecttrue-用于Httpsboot的证书
certarraytrue-HttpsBoot的证书
crlarraytrue-HttpsBoot的吊销列表
CertificateStringstringfalse-Bios证书字符串内容
CertificateTypestringfalse-证书类型
Issuerobjecttrue-证书颁发者信息
Subjectobjecttrue-证书使用者信息
Countrystringtrue-国家
Statestringtrue-省、州
Citystringtrue-城市
Organizationstringtrue-组织
OrganizationUnitstringtrue-组织单位
CommonNamestringtrue-通用名称
Emailstringtrue-邮箱
ValidNotBeforestringtrue-有效开始日期
ValidNotAfterstringtrue-有效截止日期
KeyUsagearraytrue-密钥用法
SerialNumberstringtrue-序列号
Fingerprintstringtrue-指纹信息
FingerprintHashAlgorithmstringtrue-指纹哈希算法
SignatureAlgorithmstringtrue-签名算法
UefiSignatureOwnerstringtrue-UEFI签名属主
Actionsobjecttrue-Redfish允许的指定Bios证书相关可执行操作
#BootCertificates.ImportSecureBootCertobjecttrue-导入SecureBoot证书操作
#BootCertificates.ResetSecureBootCertobjecttrue-清除SecureBoot证书操作
#BootCertificates.ImportBootCertobjecttrue-导入httpsBoot证书操作
#BootCertificates.ImportBootCrlobjecttrue-导入HttpsBoot吊销列表操作
#BootCertificates.ResetBootCertobjecttrue-清除HttpsBoot证书操作
#BootCertificates.ResetBootCrlobjecttrue-清除HttpsBoot吊销列表操作
targetstringtrue-Bios证书操作的访问路径
@Redfish.ActionInfostringtrue-操作信息查询路径

supported_methods

  • GET
  • POST

HTTP methods

GET

命令功能

查询 Bios 证书信息

说明

系统启动过程中无法查询证书信息。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates

请求头:


X-Auth-Token: 123456789***********************

请求消息体: 无

参数说明

参数参数说明取值
device_ip登录设备的IP地址IPv4或IPv6地址
system_id系统资源的ID参见源文件参数说明
auth_value请求消息的鉴权参数可通过/redfish/v1/SessionService/Sessions创建会话时获得

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
GET https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates

X-Auth-Token: 123456789***********************

请求消息体:无

响应样例:

json
{
  "@odata.context": "/redfish/v1/$metadata#BootCertificates.BootCertificates",
  "@odata.id": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates",
  "@odata.type": "#BootCertificates.v1_0_0.BootCertificates",
  "Id": "BootCertificates",
  "Name": "Bios Boot Certificates",
  "Certificates": {
    "SecureBoot": {
      "db": [
        {
          "CertificateString": "-----BEGIN CERTIFICATE-----...-----END CERTIFICATE-----\n",
          "CertificateType": "PEM",
          "Issuer": {
            "Country": "CHN",
            "State": "Guangdong",
            "City": "Dongguan",
            "Organization": "",
            "OrganizationUnit": "",
            "CommonName": "",
            "Email": ""
          },
          "Subject": {
            "Country": "CHN",
            "State": "Guangdong",
            "City": "Shenzhen",
            "Organization": "",
            "OrganizationUnit": "",
            "CommonName": "",
            "Email": ""
          },
          "ValidNotBefore": "Sep 26 2016 UTC",
          "ValidNotAfter": "Sep 24 2026 UTC",
          "KeyUsage": [
            "DigitalSignature",
            "NonRepudiation"
          ],
          "SerialNumber": "e0 eb 8b bb f4 74 35 05",
          "Fingerprint": "20ec3964c75cebb27b4a8ccb79c16fe43e09cc0ebe3918adebb83f175a5315ca",
          "SignatureAlgorithm": "sha256WithRSAEncryption",
          "FingerprintHashAlgorithm": "",
          "UefiSignatureOwner": "77ff9abd-0359-4d32-bd60-28f5e78f784b"
        }
      ],
      "dbx": []
    },
    "Boot": {
      "HttpsCert": [],
      "HttpsCrl": []
    }
  },
  "Actions": {
    "#BootCertificates.ImportBootCert": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCert",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ImportBootCertActionInfo"
    },
    "#BootCertificates.ImportBootCrl": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCrl",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ImportBootCrlActionInfo"
    },
    "#BootCertificates.ResetBootCert": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCert",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ResetBootCertActionInfo"
    },
    "#BootCertificates.ResetBootCrl": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCrl",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ResetBootCrlActionInfo"
    },
    "#BootCertificates.ImportSecureBootCert": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportSecureBootCert",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ImportSecureBootCertActionInfo"
    },
    "#BootCertificates.ResetSecureBootCert": {
      "target": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetSecureBootCert",
      "@Redfish.ActionInfo": "/redfish/v1/Systems/1/Bios/Oem/Public/BootCertificates/ResetSecureBootCertActionInfo"
    }
  }
}

响应码:200

POST (ACTION)

ImportSecureBootCert

命令功能

导入安全启动证书

说明

导入的BIOS安全启动证书表示已下发的配置,但当前还未生效,下次系统重启时 生效;系统启动过程中无法导入证书。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportSecureBootCert

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "Database": "database",
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportSecureBootCert

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "Database": "database",
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200

POST (ACTION)

ResetSecureBootCert

命令功能

重置安全启动证书

说明

重置BIOS安全启动证书表示已下发的配置,但当前还未生效,下次系统重启时生 效;系统启动过程中无法重置证书。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetSecureBootCert

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "Database": "database",
  "ResetKeysType": "resetkeys_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetSecureBootCert

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "Database": "database",
  "ResetKeysType": "resetkeys_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200

POST (ACTION)

ImportBootCert

命令功能

导入 HTTPS 启动证书

说明

导入的BIOS HTTPS启动证书表示已下发的配置,但当前还未生效,下次系统重启 时生效;系统启动过程中无法导入证书。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCert

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCert

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200

POST (ACTION)

ResetBootCert

命令功能

重置 HTTPS 启动证书

说明

重置BIOS HTTPS启动证书表示已下发的配置,但当前还未生效,下次系统重启时 生效;系统启动过程中无法重置证书。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCert

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "ResetKeysType": "resetkeys_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCert

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "ResetKeysType": "resetkeys_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200

POST (ACTION)

ImportBootCrl

命令功能

导入 HTTPS 启动证书吊销列表

说明

导入的BIOS HTTPS启动证书吊销列表表示已下发的配置,但当前还未生效,下次 系统重启时生效;系统启动过程中无法导入吊销列表。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCrl

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ImportBootCrl

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "CertificateString": "certificate_string",
  "CertificateType": "certificate_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200

POST (ACTION)

ResetBootCrl

命令功能

重置 HTTPS 启动证书吊销列表

说明

重置BIOS HTTPS启动证书吊销列表表示已下发的配置,但当前还未生效,下次系 统重启时生效;系统启动过程中无法重置证书吊销列表。

命令格式

URL: https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCrl

请求头:


X-Auth-Token: 123456789***********************
Content-Type: header_type

请求消息体:

json
{
  "ResetKeysType": "resetkeys_type"
}

请求头参数说明

参见 请求头参数说明

请求体参数说明

使用指南

系统重新启动时生效。 支持的BMC版本:BMC300 5.01.00.01及之后的版本。

使用实例

请求样例:

http
POST https://device_ip/redfish/v1/Systems/system_id/Bios/Oem/Public/BootCertificates/Actions/BootCertificates.ResetBootCrl

X-Auth-Token: 123456789*********************** Content-Type: header_type

请求消息体:

json
{
  "ResetKeysType": "resetkeys_type"
}

响应样例:

json
{
  "error": {
    "code": "Base.1.0.GeneralError",
    "message": "A general error has occurred. See ExtendedInfo for more information.",
    "@Message.ExtendedInfo": [
      {
        "@odata.type": "#Message.v1_0_0.Message",
        "MessageId": "Base.1.0.Success",
        "RelatedProperties": [],
        "Message": "Successfully Completed Request",
        "MessageArgs": [],
        "Severity": "OK",
        "Resolution": "None"
      }
    ]
  }
}

响应码:200