PowerProtect DD Management Center APIs
PowerProtect DD Management Center APIs
No results found.
Getting Started
Tutorials
Introduction to REST API
Make Your First Call
Authentication and Authorization
Manage Certificates
Page the Result
Filter the Result
Sort the Result
Return Partial Response
Use Cases
Vdisk Devices
Auth
Stats Capacities
Alerts
Alerts Notifylists
Cloud Profiles
Cloud Unit
Data Movement Policy
Data Movement
Data Movement Stats Files
Data Movement Stats Mtrees
Data Movement Stats Recall
Managed Files
Filesys
Filesys Block Storage
Licenses
Mdtags
Mtrees
Mtrees Id Rlfiles
Mtrees Id Stats
Mtrees Id Stats Capacity
Mtree Id Stats Compressions
Networks
Network
Network Host Name Reset
Network Host Name
Network Domain Name Reset
Network Domain Name
Network Search Domain Reset
Network Search Domain
Network Dns Server Reset
Network Dns Server
Network Gateway Reset
Network Gateway
Network Gateway Static Ipv4
Network Gateway Static Ipv6
Network Interface
Network Interface Physical
Network Interface Vlan
Network Interface Alias
Network Nic
Cifs Shares
Ddboost
Ddboost Clients
Ddboost Storage Units
Ddboost Users
Nfs
Nfs Exports
Nfs Exports Id Clients
Nfs Exports Id Referrals
Vdisk Devgrps
Dd Systems
Vdisk Pools
Vdisk Stimgs
Repl Contexts
Scsitgt Access Groups
Scsitgt Endpoints
Scsitgt Initiators
Services
Services Asup
Services Asup Reset
Iscsi
Services License Server
Services Log
Mdtags Services
Services Ntp
Snmp
Settings
Tenant Units
Tenants
Snapshots
Stats
Stats Capacity
Comp Measurements Support Check
Comp Measurements
Stats File Replications
Filesys Stats
Stats Perf
Stats Performances Mtrees
Stats Systems File Replications
Stats Upgrades Schedules
Storage Disks
Support
Support Bundles
System
System Repl
System Space
Upgrades Schedules
Users
Users Id Pre Check
Config Template Audit
Config Template Audit History
Config Template Audit Schedule
Config Template
Config Templates Features
Config Template Apply
Profile Access Info
Resource Profile
Tasks
Filesys Object Store
Filesys Object Stores Aws
Cifs Auth

Certificate for REST APIs

The PowerProtect DDMC System provides a self-signed certificate by default. The self-signed certificate is not trusted by external systems (by default) and may block you from using the REST APIs because of security warnings from the HTTP client. This tutorial introduces two ways to resolve this issue.

Trust the PowerProtect DDMC system certificate (recommended)

Trust the PowerProtect DDMC system root CA

The PowerProtect DDMC system root CA can be found here on the DDMC system:

/root/certs/CA/cacert.pem

Most HTTP clients have their own trusted CA management. Follow the guidelines for those clients to install the PowerProtect DDMC system root CA into the corresponding trusted area.

The PowerProtect DDMC system CA can be located here:

/etc/ssl/certs/<DDMC hostname>.pem

If you are using the client URL (cURL) command line, you can specify your own CA certification path with the --cacert option. For example:

curl --cacert /etc/ssl/certs/<DDMC hostname>.pem \
     --request POST \
     --url https://<DDMC-SYSTEM-IP/FQDN>:3009/rest/v1.0/auth \
     --header 'content-type: application/json' \
     --data '{"username":"<your-user-name>","password":"<your-password>"}'

Ingore the certificate not trusted warning (nonproduction activities only)

Most HTTP clients provide an option to turn off SSL certificate verification.

To log in to the system, you can use this cURL command:

curl --request POST \
  --url https://<DDMC-SYSTEM-IP/FQDN>:3009/rest/v1.0/auth \
  --header 'content-type: application/json' \
  --data '{"username":"<your-user-name>","password":"<your-password>"}'

If you have not trusted the PowerProtect DDMC system root CA, you are blocked by the following response from cURL:

curl: (60) SSL certificate problem: self signed certificate in certificate chain.

More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above.

For nonproduction activities such as test and debug, you can use the -k option to bypass the certificate verification.

curl -k --request POST \
  --url https://<DDMC-SYSTEM-IP/FQDN>:3009/rest/v1.0/auth \
  --header 'content-type: application/json' \
  --data '{"username":"<your-user-name>","password":"<your-password>"}'

Then the response is OK.

CAUTION: Ignoring the certificate is risky because it enables man-in-the-middle attacks that can sniff your traffic (in this case, the password). Ensure that you use this method only in a safe network environment.