Liste des certificats

POST
https://daas.digicert.com/apicontroller/v1/reports/viewIpPort

Use this endpoint to list the IP and port details from the Discovery scan results.

cURL
curl -X POST \
  https://daas.digicert.com/apicontroller/v1/reports/viewIpPort \
  -H 'Content-Type: application/json' \
  -H 'X-DC-DEVKEY: {{api_key}}' \
  -d '{
    "searchCriteriaList": [{
        "key": "port",
        "operation": "EQUALS",
        "value": [443]
    }],
    "accountId": 5153184,
    "divisionIds": [],
    "startIndex": 1,
    "pageSize": 50,
    "filterSelected": "cn",
    "sortedColumnId": "isCertPresent",
    "sortOrder": "DESC"
}'
200 OK
{  
    "error": null,
    "data": {
        "totalCount": 4598,
        "currentCount": 50,
        "onlineIPPortDetailsDTOList": [{
            "commonName": "testnov590dayscert.winthecustomer.com",
            "port": 443,
            "ipAddress": "10.100.192.118",
            "isCertPresent": true,
            "serverSecurityRating": "Very secure",
            "service": "",
            "devicetype": "",
            "serverName": "",
            "serverVersion": "",
            "scanId": null,
            "scanName": "Single cloud scan",
            "domainName": "NO_DOMAINNAME_SPECIFIED",
            "firstDiscoveredDate": 1650959779340,
            "certificateId": "dcafff4734719a47d375cea7368d6cb08801cbe8",
            "os": "",
            "osVersion": null,
            "vulnerabilityName": "",
            "serverId": 3277,
            "san": "testnov590dayscert.winthecustomer.com",
            "org": "Cert Testing Inc.",
            "certExpiryDate": 1650931199000,
            "certStatus": "EXPIRED",
            "certRating": "At risk",
            "ca": "Unknown",
            "serialNumber": "04bf1034daa7dafbd7446b80586e07d6",
            "protocols": "TLSv1.2",
            "certType": "ORGANIZATION_VERIFICATION",
            "status": "",
            "redirect": "No",
            "certValidFrom": 1650585600000,
            "actions": {
                "primaryAction": "TRANSFER",
                "secondaryActions": ["VIEW_CERTIFICATE"]
            },
            "source": "Cloud"
        }, {
            "commonName": "localhost.digicert.com",
            "port": 443,
            "ipAddress": "10.100.193.133",
            "isCertPresent": true,
            "serverSecurityRating": "Very secure",
            "service": "",
            "devicetype": "",
            "serverName": "",
            "serverVersion": "",
            "scanId": null,
            "scanName": "Single cloud scan",
            "domainName": "NO_DOMAINNAME_SPECIFIED",
            "firstDiscoveredDate": 1650959782845,
            "certificateId": "d3ca289006570ff4db24b3bb9e83e2a03d985c59",
            "os": "",
            "osVersion": null,
            "vulnerabilityName": "",
            "serverId": 25368,
            "san": "localhost.digicert.com",
            "org": "DigiCert, Inc.",
            "certExpiryDate": 1635724799000,
            "certStatus": "EXPIRED",
            "certRating": "At risk",
            "ca": "DigiCert",
            "serialNumber": "0d2f75b060d272363b66940dd3741daf",
            "protocols": "TLSv1.2",
            "certType": "ORGANIZATION_VERIFICATION",
            "status": "",
            "redirect": "No",
            "certValidFrom": 1603238400000,
            "actions": {
                "primaryAction": "REISSUE",
                "secondaryActions": ["VIEW_CERTIFICATE"]
            },
            "source": "Cloud"
        }]
    }
}

Request parameters

Name Req/Opt Type Description
searchCriteriaList optional array Filter results by specified values.
The array includes key, operation and value.
Example: searchCriteriaList:[{"key":"port","operation":"EQUALS","value":[443]}]
Allowed values for key: scanName, division, cn, ip, port, isCertPresent, status, serialNumber, keyAlgo, serverSecurity, serverSecurityRating, daysToExpire, protocols, sshKeyFingerprint, source.
accountId required string Account ID.
divisionIds optional array Division IDs.
startIndex optional integer Index of the first result.
Default: 1
pageSize optional integer Number of records per page.
Allowed values: 0 to 512
Default: 1
filterSelected optional string The value to show in the results for each IP/port that meets the search criteria.
sortedColumnId optional string Sort results by specified parameter.
Allowed values: cn, org, status, serialNum, securityRating, ca, daysToExpire
Default: iscertPresent with sortOrder as DESC
sortOrder optional string Sort direction.
Allowed values: ASC (ascending: 0-9, A-Z), DESC (descending: 9-0, Z-A)
Default: ASC

Response parameters

Name Type Description
error object Includes error codes, if any.
data object Object with information about the filter results.
.. totalCount integer Total number of records that match search criteria.
.. currentCount integer Number of records on current page.
.. onlineIPPortDetailsDTOList object Object container for the IP/port details.
.. .. commonName string Common name on the certificate found.
.. .. port integer Port that the certificate was found on.
.. .. ipAddress string IP address details.
.. .. isCertPresent boolean Whether or not certificate is installed at the IP/port.
.. .. serverSecurityRating string Server security rating, based on the endpoint's communication and security settings.
.. .. service string Communication protocol, such as https.
.. .. devicetype string General hardware type, if available.
.. .. serverName string Server software, if available.
.. .. serverVersion string Server version, if available.
.. .. scanId integer Unique ID for the CertCentral Discovery scan that scanned and retrieved details for the IP/port.
.. .. scanName string Friendly name the admin gave to the CertCentral Discovery scan.
.. .. domainName string Root domain of the IP/port.
.. .. firstDiscoveredDate integer Date certificate was first found by CertCentral Discovery scan.
Format: epoch in millisecond.
Epoch corresponds to 0 hours, 0 minutes, and 0 seconds (00:00:00) Coordinated Universal Time (UTC) on a specific date, which varies from system to system.
Example: 1855828800000
.. .. certificateId string Unique DigiCert-generated ID for the certificate. Use for API requests that require it.
.. .. os string Operating system.
.. .. osVersion string Operating system version, if available.
.. .. vulnerabilityName string Vulnerabilities found based on known IP/port details.
.. .. serverId integer Server ID that uniquely identifies the record.
.. .. san string Subject alternative names on the certificate.
.. .. org string Organization name on the certificate.
.. .. certExpiryDate integer Expiration date of the certificate found on the endpoint.
Format: epoch in millisecond.
Epoch corresponds to 0 hours, 0 minutes, and 0 seconds (00:00:00) Coordinated Universal Time (UTC) on a specific date, which varies from system to system.
Example: 1855828800000
.. .. certStatus string Status of the certificate found on the endpoint.
.. .. certRating string Certificate security rating, based on industry standards and the certificate's settings.
.. .. ca string Certificate Authority that issued the certificate.
.. .. serialNumber string Serial number assigned to the certificate on issuance.
.. .. protocols string Protocols scan for SSLv2, SSLv3, TLSv1.1.
Default protocols scan are TLSv1.3, TLSv1.2 and TLSv1.
.. .. certType string Type of the certificate.
Possible values: EXTENDED_VERIFICATION, ORGANIZATION_VERIFICATION,DOMAIN_VERIFICATION.
.. .. status string HTTP response status return from server (IP:PORT).
.. .. redirect string Whether the server is redirected to any other URL.
Possible values: Yes, No.
.. .. certValidFrom integer Date and time from when the certificate is valid.
.. .. actions object Action performed on the certificate associated with the IP/port.
.. .. .. primaryActions string Primary action performed.
.. .. .. secondaryActions string Secondary action performed.
.. .. source string The source used to identify the IP/Port.
Possible values: Agent, Sensor,Cloud, Automation upload, Manual upload.