API Error Codes
This section contains an overview of all the different application errors that can occur during an API call, their API Error codes, the default message of each error and its HTTP status code. A detailed overview of which errors can occur during what API calls is provided in each endpoint description.
| Api Error | Message | HTTP Status |
|---|---|---|
REALM_NOT_FOUND |
Realm does not exist |
404 NOT_FOUND |
REALM_NOT_FOUND_UNPROCESSABLE_ENTITY |
Realm does not exist |
422 UNPROCESSABLE_ENTITY |
REALM_IS_ARCHIVED |
Realm is archived |
409 CONFLICT |
REALM_IS_ALREADY_UNARCHIVED |
Realm is already unarchived |
409 CONFLICT |
POLICY_NOT_FOUND |
Policy does not exist |
404 NOT_FOUND |
POLICY_NOT_FOUND_UNPROCESSABLE_ENTITY |
Policy does not exist |
422 UNPROCESSABLE_ENTITY |
API_CLIENT_NOT_FOUND |
Api Client does not exist |
404 NOT_FOUND |
CERTIFICATE_NOT_FOUND |
Certificate does not exist |
404 NOT_FOUND |
CERTIFICATE_NOT_FOUND_UNPROCESSABLE_ENTITY |
Certificate does not exist |
422 UNPROCESSABLE_ENTITY |
CERTIFICATE_IS_ACTIVE |
Certificate is active |
409 CONFLICT |
CERTIFICATE_IS_ARCHIVED |
The Certificate is archived |
409 CONFLICT |
CERTIFICATE_IS_ALREADY_UNARCHIVED |
The Certificate is already unarchived |
409 CONFLICT |
CERTIFICATE_REQUEST_NOT_FOUND |
The Certificate Request doesn’t exist |
404 NOT_FOUND |
CERTIFICATE_REQUEST_NOT_FOUND_UNPROCESSABLE_ENTITY |
The Certificate Request doesn’t exist |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_NOT_FOUND |
End entity does not exist |
404 NOT_FOUND |
END_ENTITY_NOT_FOUND_UNPROCESSABLE_ENTITY |
End entity does not exist |
422 UNPROCESSABLE_ENTITY |
USER_NOT_FOUND |
User does not exist |
404 NOT_FOUND |
AUTHENTICATED_PRINCIPAL_NOT_FOUND |
Authenticated principal does not exist |
404 NOT_FOUND |
USER_NOT_FOUND_UNPROCESSABLE_ENTITY |
User does not exist |
422 UNPROCESSABLE_ENTITY |
APPLICATION_USER_NOT_FOUND_UNPROCESSABLE_ENTITY |
Application user does not exist |
404 NOT_FOUND |
MAIL_SETTINGS_NOT_FOUND |
Mail Settings do not exist |
404 NOT_FOUND |
MAIL_SETTINGS_NOT_FOUND_INTERNAL_SERVER_ERROR |
Mail Settings do not exist |
500 INTERNAL_SERVER_ERROR |
SYSTEM_REALM_SETTINGS_NOT_FOUND |
System Realm Settings do not exist |
404 NOT_FOUND |
SYSTEM_REALM_SETTINGS_NOT_FOUND_UNPROCESSABLE_ENTITY |
System Realm Settings do not exist |
422 UNPROCESSABLE_ENTITY |
SYSTEM_POLICY_SETTINGS_NOT_FOUND |
System Policy Settings do not exist |
404 NOT_FOUND |
SYSTEM_POLICY_SETTINGS_NOT_FOUND_UNPROCESSABLE_ENTITY |
System Policy Settings do not exist |
422 UNPROCESSABLE_ENTITY |
SYSTEM_POLICY_INVALID_REALM |
System Policy must be defined inside SYSTEM realm |
409 CONFLICT |
CONFIGURATION_UPDATE_NOT_ALLOWED |
Configuration update not allowed |
409 CONFLICT |
CONNECTION_SETTINGS_NOT_FOUND |
Connection Settings do not exist |
404 NOT_FOUND |
INVALID_CONFIGURATION_VALUE |
Configuration value is not valid |
400 BAD_REQUEST |
CONFIGURATION_NOT_FOUND |
Configuration does not exist |
404 NOT_FOUND |
CONFIGURATION_ALREADY_EXISTS_FOR_THIS_SETTING |
Configuration Setting already exists for this setting key |
409 CONFLICT |
PRIVATE_KEY_PASSWORD_POLICY_NOT_FOUND_UNPROCESSABLE_ENTITY |
Private key password policy do not exist |
422 UNPROCESSABLE_ENTITY |
API_CLIENT_PASSWORD_POLICY_NOT_FOUND_UNPROCESSABLE_ENTITY |
API client password policy do not exist |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_PASSWORD_POLICY_NOT_FOUND_UNPROCESSABLE_ENTITY |
End entity password policy do not exist |
422 UNPROCESSABLE_ENTITY |
PASSWORD_NOT_FOUND |
Password for this End Entity and Policy does not exists |
404 NOT_FOUND |
MAILING_LIST_NOT_FOUND |
Mailing list does not exist |
404 NOT_FOUND |
MAILING_LIST_NOT_FOUND_UNPROCESSABLE_ENTITY |
Mailing list does not exist |
422 UNPROCESSABLE_ENTITY |
RA_CERTIFICATE_NOT_FOUND |
Ra Certificate does not exist |
500 INTERNAL_SERVER_ERROR |
VERIFICATION_TOKEN_NOT_FOUND |
VerificationToken does not exist |
404 NOT_FOUND |
POLICY_REALM_AND_END_ENTITY_REALM_MUST_BE_EQUAL |
Policy Realm and End Entity Realm must be the same |
422 UNPROCESSABLE_ENTITY |
MAILING_LIST_ALREADY_EXISTS |
A Mailing List with this name already exists |
409 CONFLICT |
MAILING_LIST_IS_ARCHIVED |
Mailing List is archived |
409 CONFLICT |
MAILING_LIST_IS_ALREADY_UNARCHIVED |
Mailing List is already unarchived |
409 CONFLICT |
REALM_NOT_FOUND_OR_DISABLED |
Realm does not exist or is disabled |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_NOT_FOUND_OR_ARCHIVED |
End Entity does not exist or End Entity is archived |
404 NOT_FOUND |
END_ENTITY_NOT_FOUND_OR_ARCHIVED_UNPROCESSABLE_ENTITY |
End Entity does not exist or End Entity is archived |
422 UNPROCESSABLE_ENTITY |
APPLICATION_USER_ALREADY_VOTED |
This application user has already voted for the result |
409 CONFLICT |
CERTIFICATE_ALREADY_EXISTS_FOR_USER |
A certificate already exists for the current user |
409 CONFLICT |
CERTIFICATE_REQUEST_IS_ALREADY_DECLINED |
This Certificate Request has already been declined |
409 CONFLICT |
PARENT_ENTITY_IS_ARCHIVED |
Parent entity is archived |
409 CONFLICT |
CA_NOT_FOUND |
CA does not exist |
404 NOT_FOUND |
CA_IS_ARCHIVED |
CA is archived |
409 CONFLICT |
CA_IS_ALREADY_UNARCHIVED |
CA is already unarchived |
409 CONFLICT |
DEFAULT_POLICY_NOT_FOUND_INTO_SELECTED_REALMS |
Default Policy must belong to one of the selected realms |
422 UNPROCESSABLE_ENTITY |
API_CLIENT_INITIALIZE_RANDOM_NUMBER_ENGINE_FAILED |
Cannot initialize Random Number Engine |
500 INTERNAL_SERVER_ERROR |
CERTIFICATE_PROVIDER_NOT_FOUND |
Certificate Provider does not exist |
404 NOT_FOUND |
CERTIFICATE_PROVIDER_NAME_EXISTS |
Certificate Provider with provided name already exists |
409 CONFLICT |
UNSUPPORTED_METHOD_BY_CERTIFICATE_PROVIDER |
The specified Certificate provider does not support this method |
409 CONFLICT |
CERTIFICATE_PROVIDER_IS_ALREADY_UNARCHIVED |
Certificate Provider is already unarchived |
409 CONFLICT |
CERTIFICATE_PROVIDER_IS_ARCHIVED |
Certificate Provider is archived |
409 CONFLICT |
CANNOT_ARCHIVE_A_CERTIFICATE_PROVIDER_THAT_IS_USED_BY_A_POLICY |
Cannot archive a Certificate Provider that is used by a Policy |
409 CONFLICT |
INVALID_CERTIFICATE_PROVIDER_CONFIGURATION |
Invalid Certificate Provider Configuration |
422 UNPROCESSABLE_ENTITY |
CERTIFICATE_PROVIDER_CONNECTION_FAILED |
Connection with the Certificate Provider failed |
422 UNPROCESSABLE_ENTITY |
UNSUPPORTED_CERTIFICATE_PROVIDER_TYPE |
Unsupported Certificate Provider type |
422 UNPROCESSABLE_ENTITY |
CREATE_CERTIFICATES_ZIP_FAILED |
There was an error while creating the certificates zip file |
500 INTERNAL_SERVER_ERROR |
IMPORT_CERTIFICATE_FILE_CONTAINS_NON_EE |
Provided file contains non-EE certificate |
422 UNPROCESSABLE_ENTITY |
CERTIFICATE_PROVIDER_DOES_NOT_SUPPORT_INSTANT_CERTIFICATE_ISSUANCE |
Certificate Provider does not support instant certificate issuance |
422 UNPROCESSABLE_ENTITY |
CREATE_CERT_FAILED_CERTIFICATE_REQUEST_NOT_APPROVED |
Cannot create new Certificate, Certificate Request is not approved |
409 CONFLICT |
CREATE_CERT_FAILED_CERTIFICATE_ALREADY_REQUESTED |
Cannot create new certificate, certificate has been already requested |
409 CONFLICT |
CREATE_CERT_FAILED_POLICY_PERMISSION_REQUIRED |
Not allowed to create certificates for this Policy |
403 FORBIDDEN |
CREATE_CERT_FAILED_REALM_ARCHIVED |
Cannot create new Certificate in a Realm that is archived |
409 CONFLICT |
CARA_TEMPLATE_SIGNER_NOT_AVAILABLE |
CARA Template Signer is not available |
500 INTERNAL_SERVER_ERROR |
CARA_TEMPLATE_DETAILS_LOAD_FAILED |
Failed to load certificate template details from CA |
500 INTERNAL_SERVER_ERROR |
COMMON_NAME_CANNOT_BE_EMPTY |
Common Name cannot be empty |
422 UNPROCESSABLE_ENTITY |
BATCH_CERTIFICATE_CREATION_COMMON_NAME_CANNOT_BE_EMPTY |
Common Name cannot be empty |
422 UNPROCESSABLE_ENTITY |
MULTIPLE_CERTIFICATES_NOT_ALLOWED |
There are already active certificates for specified End Entity. Revoke them and try again |
422 UNPROCESSABLE_ENTITY |
ERROR_WHILE_ENCODING_CERTIFICATE |
There was an error while encoding the certificate |
500 INTERNAL_SERVER_ERROR |
RETRIEVE_CRL_FAILED |
Failed to retrieve crl |
500 INTERNAL_SERVER_ERROR |
RETRIEVE_CA_CERTIFICATE_FAILED |
Failed to retrieve CA cert from CARA |
500 INTERNAL_SERVER_ERROR |
CRYPTO_ALGORITHM_UNKNOWN |
Unknown Crypto Algorithm |
422 UNPROCESSABLE_ENTITY |
PKCS10_ATTACHED_TO_CERTIFICATE_REQUEST_NOT_FOUND |
This Pkcs10 is not attached to any Certificate Request |
404 NOT_FOUND |
CANNOT_CREATE_CERT_REQUEST_WITH_REALM_ARCHIVED |
Cannot create new Cert Request in a Realm that is archived |
409 CONFLICT |
KEY_PAIR_INPUT_PARAMS_INVALID_COMBINATION |
Invalid combination of key pair mode and input parameters |
422 UNPROCESSABLE_ENTITY |
VALUE_OF_RULE_PROPERTY_IS_MISSING |
The value of a rule property is missing |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_ALIAS_WITH_SAME_ALIAS_ALREADY_EXISTS |
An End Entity Alias with the same Alias already exists |
409 CONFLICT |
END_ENTITY_AND_POLICY_STRATEGIES_NOT_EQUAL |
Cannot create Cert Request, when End Entity’s strategy is different than Policy’s |
422 UNPROCESSABLE_ENTITY |
KEY_PAIR_MODE_NOT_INCLUDED_IN_POLICY_ALLOWED_VALUES |
Certificate Request key pair mode must be included in Policy allowed key pair modes |
422 UNPROCESSABLE_ENTITY |
SELF_SIGNED_NOT_ALLOWED_BY_POLICY |
Certificate Request for self-signed certificate must be allowed by Policy |
422 UNPROCESSABLE_ENTITY |
INVALID_KEY_PAIR_MODE_SELF_SIGNED_COMBINATION |
Provided key pair mode is not allowed on Certificate Request for self-signed Certificate |
422 UNPROCESSABLE_ENTITY |
KEY_GEN_PARAMS_NOT_INCLUDED_IN_CERT_REQUEST_WITH_SERVER_GEN |
Certificate request with server generated KeyPairMode does not include key generation parameters |
422 UNPROCESSABLE_ENTITY |
PKCS10_NOT_INCLUDED_IN_CERT_REQUEST_WITH_PKCS10 |
Certificate request with PKCS10 KeyPairMode does not include a PKCS10 |
422 UNPROCESSABLE_ENTITY |
PUBLIC_KEY_NOT_INCLUDED_IN_CERT_REQUEST_WITH_PUBLIC_KEY |
Certificate request with public key KeyPairMode does not include a public key |
422 UNPROCESSABLE_ENTITY |
BATCH_CERTIFICATE_INVALID_REQUEST_PARAMETERS |
Batch certificate creation request failed. Please see user manual to ensure request validity. |
422 UNPROCESSABLE_ENTITY |
VALIDITY_PERIOD_NOT_INCLUDED_IN_POLICY_ALLOWED_VALUES |
Certificate Request validity period must be included in Policy allowed validity periods |
422 UNPROCESSABLE_ENTITY |
CRYPTOGRAPHIC_ALGORITHM_NOT_INCLUDED_IN_POLICY_RESTRICTIONS |
Certificate Request cryptographic algorithm must be included in Policy cryptographic restrictions |
422 UNPROCESSABLE_ENTITY |
KEY_GENERATION_PARAMS_NOT_INCLUDED_IN_POLICY_RESTRICTIONS |
Certificate Request key generation parameters must be included in Policy cryptographic restrictions |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_COMMON_NAME_VALUE_NOT_ALLOWED |
End Entity common name value is not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_COUNTRY_VALUE_NOT_ALLOWED |
End Entity country value is not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_EMAIL_VALUE_NOT_ALLOWED |
End Entity e-mail value is not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_ORGANIZATION_VALUE_NOT_ALLOWED |
End Entity organization value is not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_ORGANIZATION_UNIT_VALUE_NOT_ALLOWED |
End Entity organizational unit value is not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_DOMAIN_VALUES_NOT_ALLOWED |
End Entity domain values are not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_IP_ADDRESS_VALUES_NOT_ALLOWED |
End Entity IP address values are not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_GENERIC_DTO_VALUES_NOT_ALLOWED |
End Entity generic dto values are not allowed |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_KEYCLOAK_ATTRIBUTES_MISMATCH |
User data in ID provider do not match with provided end entity |
422 UNPROCESSABLE_ENTITY |
IMPORT_CERTIFICATE_POLICY_IMPORT_NOT_ALLOWED |
Certificate request policy must allow certificate(s) import |
422 UNPROCESSABLE_ENTITY |
IMPORT_CERTIFICATE_POLICY_INVALID_EE_STRATEGY |
Certificate request policy must contain non PKCS10 end entity strategy |
422 UNPROCESSABLE_ENTITY |
IMPORT_CERTIFICATE_POLICY_INVALID_KEY_PAIR_MODE |
Certificate request policy key pair modes must contain public key mode |
422 UNPROCESSABLE_ENTITY |
IMPORT_CERTIFICATE_CERTIFICATE_WITH_FINGERPRINT_EXISTS |
Provided certificate already exists in system |
409 CONFLICT |
IMPORT_CERTIFICATE_CERTIFICATE_COMMON_NAME_IS_REQUIRED |
Certificate common name cannot be empty |
422 UNPROCESSABLE_ENTITY |
PKCS10_REQUEST_DETAILS_DO_NOT_MATCH_END_ENTITY |
PKCS10 request details do not match with End Entity details |
422 UNPROCESSABLE_ENTITY |
CANNOT_ARCHIVE_A_CERTIFICATE_REQUEST_THAT_IS_CONNECTED_WITH_AN_ACTIVE_CERTIFICATE |
Cannot archive a Certificate Request that is connected with an active Certificate |
409 CONFLICT |
CERTIFICATE_REQUEST_IS_ALREADY_APPROVED |
This Certificate Request has already been approved |
409 CONFLICT |
CERTIFICATE_REQUEST_IS_ARCHIVED |
This Certificate Request is archived |
409 CONFLICT |
CERTIFICATE_REQUEST_IS_ALREADY_UNARCHIVED |
This Certificate Request is already unarchived |
409 CONFLICT |
RESEND_EMAIL_VERIFICATION_FAILED_STATUS_CHANGED |
The Certificate Request status has already been modified |
409 CONFLICT |
VERIFICATION_TOKENS_NOT_FOUND |
Verification tokens for the requested user and context do not exist |
404 NOT_FOUND |
PARSE_PKCS10_REQUEST_SIGNATURE_FAILED |
Failed to parse PKCS10 Request Signature |
500 INTERNAL_SERVER_ERROR |
VERIFICATION_OF_PKCS10_SIGNATURE_WITH_PUBLIC_KEY_FAILED |
PKCS10 Signature could not be verified with the included Public Key |
500 INTERNAL_SERVER_ERROR |
PARSE_PKCS10_PUBLIC_KEY_FAILED |
Failed to parse PKCS10 Public Key |
500 INTERNAL_SERVER_ERROR |
VALID_RSA_BC_PUBLIC_KEY_NOT_FOUND |
No valid RSA BC Public Key object found |
422 UNPROCESSABLE_ENTITY |
VALID_EC_BC_PUBLIC_KEY_NOT_FOUND |
No valid EC BC Public Key object found |
422 UNPROCESSABLE_ENTITY |
PUBLIC_KEY_ALGORITHM_IN_PKCS10_NOT_SUPPORTED |
Unsupported Public Key Algorithm in PKCS10 |
422 UNPROCESSABLE_ENTITY |
PARSE_PKCS10_REQUEST_FAILED |
Failed to parse PKCS10 Request |
500 INTERNAL_SERVER_ERROR |
CURVE_NAME_NOT_FOUND |
Could not find name for curve |
422 UNPROCESSABLE_ENTITY |
CANNOT_DELETE_NON_ARCHIVED_ENTITY |
Non archived entities cannot be deleted |
409 CONFLICT |
CANNOT_ARCHIVE_A_CA_THAT_IS_THE_ISSUER_OF_ANOTHER_CA |
Cannot archive a CA that is the issuer of another CA |
409 CONFLICT |
CANNOT_ARCHIVE_A_CA_THAT_IS_CONNECTED_WITH_A_CERTIFICATE |
Cannot archive a CA that is connected with a Certificate |
409 CONFLICT |
SUB_CA_ISSUER_NOT_FOUND_UNPROCESSABLE_ENTITY |
Issuer CA does not exist in the system |
422 UNPROCESSABLE_ENTITY |
IMPORT_X509_INVALID_PEM_FILE_CONTENT |
Provided file content is not in valid PEM format |
422 UNPROCESSABLE_ENTITY |
IMPORT_CA_FILE_CONTAINS_NON_CA |
Provided file contains non-CA certificate |
422 UNPROCESSABLE_ENTITY |
IMPORT_CA_CA_ALREADY_IN_SYSTEM |
Provided CA already exists in the system |
422 UNPROCESSABLE_ENTITY |
CANNOT_ARCHIVE_A_REALM_THAT_IS_CONNECTED_WITH_AN_ACTIVE_CERTIFICATE |
Cannot archive a Realm that is connected with an active Certificate |
409 CONFLICT |
WRONG_ALGORITHM |
Wrong or incompatible Signature Algorithm |
422 UNPROCESSABLE_ENTITY |
CMP_CONFIGURATION_NOT_FOUND |
Cmp configuration does not exist |
404 NOT_FOUND |
CMP_CONFIGURATION_NOT_FOUND_UNPROCESSABLE_ENTITY |
Cmp configuration does not exist |
422 UNPROCESSABLE_ENTITY |
CERTIFICATE_STRUCTURE_UNKNOWN |
Invalid certificate structure |
422 UNPROCESSABLE_ENTITY |
END_ENTITY_BY_CERT_BYTES_NOT_FOUND |
Found no end entities that belong to the provided cert bytes |
404 NOT_FOUND |
END_ENTITY_FOR_ALIAS_NOT_FOUND |
There is no end entity with this alias |
422 UNPROCESSABLE_ENTITY |
DUPLICATED_END_ENTITY_EXTERNAL_ID |
Cannot create an End Entity with the same External ID |
409 CONFLICT |
PASSWORD_ALREADY_EXISTS |
Password for End Entity and Policy already exists |
409 CONFLICT |
END_ENTITY_ALIAS_ALREADY_EXISTS |
End Entity already has an alias |
409 CONFLICT |
CANNOT_ARCHIVE_AN_END_ENTITY_THAT_IS_CONNECTED_WITH_AN_ACTIVE_CERTIFICATE |
Cannot archive an End Entity that is connected with an active Certificate |
409 CONFLICT |
INCORRECT_CREDENTIALS |
Your credentials are incorrect |
401 UNAUTHORIZED |
END_ENTITY_IS_ALREADY_UNARCHIVED |
The requested End Entity is already unarchived |
409 CONFLICT |
END_ENTITY_IS_ARCHIVED |
The requested End Entity is archived |
409 CONFLICT |
POLICY_IS_ARCHIVED |
The requested policy is archived |
409 CONFLICT |
POLICY_IS_ALREADY_UNARCHIVED |
The requested Policy is already unarchived |
409 CONFLICT |
END_ENTITY_VALIDATION_ERROR |
One or more end entities has a validations error |
422 UNPROCESSABLE_ENTITY |
VALID_PKCS10_REQUEST_OR_EE_FOR_STRATEGY_IS_REQUIRED |
A valid PKCS10 request or End Entity is required for this strategy |
422 UNPROCESSABLE_ENTITY |
VALID_X509_CERTIFICATE_WITH_CN_IS_REQUIRED |
A valid X509 Certificate with common name is required for this strategy |
422 UNPROCESSABLE_ENTITY |
VALID_PKCS10_REQUEST_OR_EE_WITH_EMAIL_FOR_STRATEGY_IS_REQUIRED |
A valid PKCS10 request or End Entity with email is required for this strategy |
422 UNPROCESSABLE_ENTITY |
VALID_X509_CERTIFICATE_WITH_EMAIL_IS_REQUIRED |
A valid X509 Certificate with email is required for this strategy |
422 UNPROCESSABLE_ENTITY |
ASN1_ENCODE_PKCS10_FAILED |
Failed to ASN1 encode the PKCS10 subject |
500 INTERNAL_SERVER_ERROR |
PKCS10_MULTI_VALUED_RDN_FAILED |
Not supporting multi-valued RDNs. |
500 INTERNAL_SERVER_ERROR |
VALID_EE_FOR_STRATEGY_IS_REQUIRED |
A valid end entity is required for this strategy |
422 UNPROCESSABLE_ENTITY |
INVALID_STRATEGY_FOR_X509_CERTIFICATE |
A PKCS10 strategy cannot be used with a X509 Certificate |
422 UNPROCESSABLE_ENTITY |
EE_STRATEGY_IMPLEMENTATION_NOT_FOUND |
No Implementation found for the provided EndEntityStrategy |
422 UNPROCESSABLE_ENTITY |
CRYPTO_ALGORITHMS_NOT_SUPPORTED |
Unsupported Crypto Algorithm |
422 UNPROCESSABLE_ENTITY |
FILE_INVALID_NOT_PEM_ENCODED_PKCS10 |
The provided file is not a valid pem-encoded PKCS10 Request |
422 UNPROCESSABLE_ENTITY |
PARSING_FAILURE |
Parsing of PKCS10 failed |
500 INTERNAL_SERVER_ERROR |
END_ENTITY_RULES_INVALID_REGEX |
Invalid Regular Expression in End Entity Rules |
422 UNPROCESSABLE_ENTITY |
WRONG_CMP_CONFIGURATION |
CMP configuration properties are empty or contain errors |
422 UNPROCESSABLE_ENTITY |
ENFORCE_ACTIVE_CERT_UNIQUENESS_TOLERANCE_IS_REQUIRED |
Enforce active certificate uniqueness tolerance is required |
422 UNPROCESSABLE_ENTITY |
CMP_SIGNER_IS_NOT_VALID |
CMP signer is not valid |
422 UNPROCESSABLE_ENTITY |
CMP_SIGNER_CERTIFICATE_CREATION_FAILED |
Unable to create Certificate for the CMP signer |
500 INTERNAL_SERVER_ERROR |
INVALID_ALLOWED_KEY_PAIR_MODE |
Allowed key pair modes specified are not valid |
422 UNPROCESSABLE_ENTITY |
INVALID_ALLOWED_CRYPTO_ALGORITHM |
Allowed cryptographic algorithms specified are not valid |
422 UNPROCESSABLE_ENTITY |
SIGN_WITH_CARA_FAILED |
An error occurred while signing with CARA |
500 INTERNAL_SERVER_ERROR |
DECRYPT_WITH_CARA_FAILED |
An error occurred while decrypting data with CARA |
500 INTERNAL_SERVER_ERROR |
TEMPLATE_SIGNER_CERTIFICATE_NOT_FOUND_UNPROCESSABLE_ENTITY |
Template signer certificate does not exist |
422 UNPROCESSABLE_ENTITY |
NDES_CA_CERTIFICATE_LOAD_FAILED |
Failed to load CA certificates from NDES server. |
500 INTERNAL_SERVER_ERROR |
NDES_CLIENT_INIT_FAILED |
Failed initialize NDES client. |
500 INTERNAL_SERVER_ERROR |
GLOBAL_SIGN_LOGIN_FAILED |
Failed to login to Global Sign server. |
500 INTERNAL_SERVER_ERROR |
GLOBAL_SIGN_CERTIFICATE_LOAD_FAILED |
Failed to load EE certificate from Global Sign server. |
500 INTERNAL_SERVER_ERROR |
GLOBAL_SIGN_TRUSTCHAIN_LOAD_FAILED |
Failed to load CA Certificates trust chain from Global Sign server. |
500 INTERNAL_SERVER_ERROR |
GLOBAL_SIGN_CERTIFICATE_REVOKE_FAILED |
An error occurred while revoking certificate with Global Sign |
500 INTERNAL_SERVER_ERROR |
GLOBAL_SIGN_CLIENT_INIT_FAILED |
Failed initialize Global Sign client. |
500 INTERNAL_SERVER_ERROR |
MSCA_CERTIFICATE_LOAD_FAILED |
Failed to load EE certificate from MSCA. |
500 INTERNAL_SERVER_ERROR |
MSCA_TRUSTCHAIN_LOAD_FAILED |
Failed to load CA Certificates trust chain from MSCA. |
500 INTERNAL_SERVER_ERROR |
MSCA_CERTIFICATE_REVOKE_FAILED |
An error occurred while revoking certificate with MSCA |
500 INTERNAL_SERVER_ERROR |
PSW_PUBLIC_CAS_ORDER_CREATION_FAILED |
Failed to request Public CAs certificate. |
500 INTERNAL_SERVER_ERROR |
PSW_PUBLIC_CAS_ORDER_LOAD_FAILED |
Failed to load certificate order from Public CAs server. |
500 INTERNAL_SERVER_ERROR |
PSW_PUBLIC_CAS_CERTIFICATE_LOAD_FAILED |
Failed to load EE certificate from Public CAs server. |
500 INTERNAL_SERVER_ERROR |
CANNOT_ARCHIVE_A_POLICY_THAT_IS_CONNECTED_WITH_AN_ACTIVE_CERTIFICATE |
Cannot archive a policy that is connected with an active Certificate |
409 CONFLICT |
POLICY_CERTIFICATE_PROVIDER_CONFIGURATION_IS_INVALID |
Invalid Policy Certificate Provider Configuration |
422 UNPROCESSABLE_ENTITY |
EMAIL_VERIFICATION_FAILED_TOKEN_NOT_FOUND_OR_EXPIRED |
E-mail verification failed, verification token does not exist or has expired |
422 UNPROCESSABLE_ENTITY |
EMAIL_VERIFICATION_FAILED_CERTIFICATE_REQUEST_NOT_FOUND |
E-mail verification failed, Certificate Request does not exist |
404 NOT_FOUND |
EMAIL_VERIFICATION_FAILED_CERTIFICATE_REQUEST_STATUS_CHANGED |
E-mail verification failed, Certificate Request has been modified |
409 CONFLICT |
RA_CERTIFICATE_CHAIN_ERROR |
Error with Ra Certificate chain |
500 INTERNAL_SERVER_ERROR |
COULD_NOT_RETRIEVE_CA_CHAIN |
CA Chain could not be retrieved |
500 INTERNAL_SERVER_ERROR |
TEMPLATE_SIGNER_NOT_FOUND |
Template signer does not exist |
404 NOT_FOUND |
EMAIL_ALREADY_EXISTS |
This email already exists |
409 CONFLICT |
PASSWORD_VALIDATION_FAILED |
Password validation failed |
422 UNPROCESSABLE_ENTITY |
KEYSTORE_INVALID_KEY_PAIR_MODE |
Key pair mode does not allow keystore retrieval. |
422 UNPROCESSABLE_ENTITY |
RETRIEVE_CURRENT_CARA_VCA_ID |
Failed to retrieve the current CARA VCA id |
500 INTERNAL_SERVER_ERROR |
REQUEST_CERTIFICATE_FAILED |
Error requesting certificate |
500 INTERNAL_SERVER_ERROR |
SENDING_CARA_REQUEST_ERROR |
Error sending request to CARA service |
500 INTERNAL_SERVER_ERROR |
APPROVING_REQUEST_FAILED |
Error approving request |
500 INTERNAL_SERVER_ERROR |
CREATE_X509_CERTIFICATE_FAILED |
Error creating X509Certificate |
500 INTERNAL_SERVER_ERROR |
REVOKE_CARA_CERTIFICATE_FAILED |
An error occurred while revoking certificate with Cara |
500 INTERNAL_SERVER_ERROR |
RETRIEVE_RA_CERTIFICATE_FAILED |
An error occurred while retrieving a RA Certificate |
500 INTERNAL_SERVER_ERROR |
ENCODE_CERTIFICATE_FAILED |
Failed to encode x509Certificate object |
500 INTERNAL_SERVER_ERROR |
INVALID_COUNTRY_CODE |
Country code is not valid |
400 BAD_REQUEST |
PASSWORD_GENERATION_NOT_ALLOWED_BECAUSE_PASSWORD_IS_INSECURE |
Insecure password generation is not allowed |
422 UNPROCESSABLE_ENTITY |
OPTIMISTIC_LOCKING_EXCEPTION |
A newer version of the resource was found in the database |
409 CONFLICT |
KEY_PAIR_MODE_DB_DATA_SHOULD_NOT_BE_EMPTY |
KeyPairMode database data could not be empty |
422 UNPROCESSABLE_ENTITY |
VALID_FOR_DB_DATA_SHOULD_NOT_BE_EMPTY |
ValidFor database data could not be empty |
422 UNPROCESSABLE_ENTITY |
VALID_PKCS10_REQUEST_FOR_STRATEGY_IS_REQUIRED |
A valid PKCS10 request is required for this strategy |
422 UNPROCESSABLE_ENTITY |
CONSTANT_FOR_ENUM_NOT_FOUND |
No such Enum Constant was found |
404 NOT_FOUND |
DOWNLOAD_CRL_FROM_CERTIFICATE_FAILED |
Failed to download crl |
500 INTERNAL_SERVER_ERROR |
AVAILABLE_MAIL_SETTINGS_NOT_FOUND_UNPROCESSABLE_ENTITY |
There are no mail settings available |
422 UNPROCESSABLE_ENTITY |
HTTP_URL_IN_CERTIFICATE_NOT_SPECIFIED |
Did not specify an HTTP URL in certificate |
500 INTERNAL_SERVER_ERROR |
QUERY_OCSP_FAILED |
Failed to query OCSP |
500 INTERNAL_SERVER_ERROR |
PARSE_OCSP_RESPONSE_FAILED |
Failed to parse OCSP Response |
500 INTERNAL_SERVER_ERROR |
OCSP_QUERY_NOT_SUCCESSFUL |
OCSP Query was unsuccessful |
500 INTERNAL_SERVER_ERROR |
NO_AVAILABLE_RESPONSE_BYTES |
No responseBytes available |
500 INTERNAL_SERVER_ERROR |
UNSUPPORTED_RESPONSE_TYPE |
Unsupported response type |
500 INTERNAL_SERVER_ERROR |
OCSP_RESPONSE_NOT_A_BASIC_OCSP_RESPONSE |
Not a BasicOCSPResponse |
500 INTERNAL_SERVER_ERROR |
OCSP_RESPONSE_VERIFICATION_FAILED |
OCSP Response Verification failed |
500 INTERNAL_SERVER_ERROR |
OCSP_RESPONSE_TOO_OLD |
OCSP Response is too old |
500 INTERNAL_SERVER_ERROR |
NO_MATCHING_SINGLE_RESPONSE |
No matching single response |
500 INTERNAL_SERVER_ERROR |
UNKNOWN_OCSP_CERT_STATUS |
Unknown ocsp cert status |
500 INTERNAL_SERVER_ERROR |
RESPONSE_NONCE_MISSING |
ResponseNonce is missing |
500 INTERNAL_SERVER_ERROR |
NONCE_VALUES_MISMATCH |
Mismatch of nonce values |
500 INTERNAL_SERVER_ERROR |
VERIFY_RESPONSE_DATA_FAILED |
The verification of the ResponseData failed |
500 INTERNAL_SERVER_ERROR |
RA_AUTHENTICATION_TOKEN_TYPE_NOT_SUPPORTED |
Unsupported RaAuthenticationToken type |
500 INTERNAL_SERVER_ERROR |
AUTHENTICATION_FAILED |
Failed to Authenticate |
401 UNAUTHORIZED |
MAC_CALCULATION_FAILED |
Failed to calculate MAC |
500 INTERNAL_SERVER_ERROR |
COPY_END_ENTITY_FAILED |
Copy process of the End Entity failed |
500 INTERNAL_SERVER_ERROR |
ENCODE_BASE_64_CERTIFICATE_FAILED |
Encoding process of Base64 Certificate failed |
500 INTERNAL_SERVER_ERROR |
PAGINATION_UTILS_ERROR_UTILITY_CLASS |
Utility class |
500 INTERNAL_SERVER_ERROR |
ACCESS_DENIED |
Access denied |
403 FORBIDDEN |
BAD_CREDENTIALS |
There was an error regarding the provided credentials |
401 UNAUTHORIZED |
INVALID_TYPE_OF_ARGUMENT |
Provided argument is of invalid type |
400 BAD_REQUEST |
BAD_REQUEST |
Bad Request |
400 BAD_REQUEST |
INPUT_VALIDATION_FAILED |
Input is not valid |
400 BAD_REQUEST |
REQUESTED_ENTITY_IS_ARCHIVED |
The requested entity is archived. |
409 CONFLICT |
UNMAPPED_REQUEST_URL |
The request URL is not mapped to an endpoint |
404 NOT_FOUND |
UNKNOWN_ERROR |
Unknown Error |
500 INTERNAL_SERVER_ERROR |
METHOD_NOT_ALLOWED |
Method not allowed |
405 METHOD_NOT_ALLOWED |
MEDIA_NOT_SUPPORTED |
Media not supported |
415 UNSUPPORTED_MEDIA_TYPE |
OIDC_PROVIDER_USER_REGISTER_CONFLICT |
Username or E-Mail already exists in OpenID Connect Provider |
409 CONFLICT |
OIDC_PROVIDER_CLIENT_REGISTER_CONFLICT |
A client with the same client id already exists |
409 CONFLICT |
CLIENT_NOT_FOUND |
Could not find client |
404 NOT_FOUND |
CLIENT_SERVICE_ACCOUNT_NOT_ENABLED |
Client not enabled to retrieve service account |
409 CONFLICT |
OIDC_PROVIDER_CONNECTION_ERROR |
Unable to connect to open ID connect provider |
502 BAD_GATEWAY |
OIDC_PROPERTY_VALUE_MISSING |
Open ID Connect Provider property value is missing |
500 INTERNAL_SERVER_ERROR |
OIDC_MIGRATION_FAILED |
Please contact with the manufacturer. |
500 INTERNAL_SERVER_ERROR |
OIDC_PROVIDER_REGENERATE_CLIENT_SECRET_FAILED |
Unable to regenerate OpenIDConnect client’s secret |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_USER_ROLES_FAILED |
Unable to retrieve OpenIDConnect user roles |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_USER_COUNT_FAILED |
Unable to retrieve OpenIDConnect user count |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_USER_FAILED |
Unable to retrieve specified OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_REALM_ROLE_FAILED |
Unable to retrieve specified realm role |
502 BAD_GATEWAY |
OIDC_PROVIDER_REALM_ROLE_ASSIGNMENT_TO_USER_FAILED |
Unable to add realm role to OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_REALM_ROLE_REMOVAL_FROM_USER_FAILED |
Unable to remove realm role from OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_CLIENT_FAILED |
Unable to retrieve specified OpenIDConnect client |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_CLIENT_SERVICE_ACCOUNT_FAILED |
Unable to retrieve specified OpenIDConnect client service account |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_ALL_USERS_FAILED |
Unable to retrieve all OpenIDConnect users |
502 BAD_GATEWAY |
OIDC_PROVIDER_USER_CREATION_FAILED |
Unable to create OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_USER_UPDATE_FAILED |
Unable to update specified OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_USER_DELETION_FAILED |
Unable to delete specified OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_SEND_EMAIL_TO_USER_FAILED |
Unable to send email to specified OpenIDConnect user |
502 BAD_GATEWAY |
OIDC_PROVIDER_REALM_ROLE_NOT_FOUND |
Unable to find specified realm role |
404 NOT_FOUND |
OIDC_PROVIDER_RETRIEVE_ALL_CLIENTS_FAILED |
Unable to retrieve all OpenIDConnect clients |
502 BAD_GATEWAY |
OIDC_PROVIDER_CLIENT_CREATION_FAILED |
Unable to create OpenIDConnect client |
502 BAD_GATEWAY |
OIDC_PROVIDER_CLIENT_UPDATE_FAILED |
Unable to update specified OpenIDConnect client |
502 BAD_GATEWAY |
OIDC_PROVIDER_CLIENT_DELETION_FAILED |
Unable to delete specified OpenIDConnect client |
502 BAD_GATEWAY |
OIDC_PROVIDER_LOGIN_FAILED |
Unable to log in to OpenIDConnect |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_ROLE_USERS_FAILED |
Unable to retrieve OpenIDConnect users with specified realm role |
502 BAD_GATEWAY |
OIDC_PROVIDER_RETRIEVE_USER_ROLE_MAPPINGS_FAILED |
Unable to retrieve OpenIDConnect user role mappings |
502 BAD_GATEWAY |
MIGRATION_FAILED |
Please contact with the manufacturer. |
500 INTERNAL_SERVER_ERROR |
API_CLIENT_NOT_FOUND_UNPROCESSABLE_ENTITY |
Api Client does not exist |
409 CONFLICT |
ROLES_NOT_ENABLED |
Roles not enabled to retrieve |
409 CONFLICT |
VERSION_OF_REQUEST_NOT_FOUND_SINCE |
The request that was triggered was not found. It is available in a later version |
404 NOT_FOUND |
VERSION_OF_REQUEST_NOT_FOUND_REMOVED |
The request that was triggered was not found. It has been removed in an earlier version |
404 NOT_FOUND |
SCHEDULER_ERROR |
There was an error with the scheduler |
500 INTERNAL_SERVER_ERROR |
INVALID_VERSION_FORMAT |
Invalid API version string used in the request for version, it must be of format 'v1' |
400 BAD_REQUEST |
CSV_PARSING_ERROR |
There was an error with parsing the csv file. |
500 INTERNAL_SERVER_ERROR |
EXCEPTION_GENERATION_ERROR |
There was an error generating the API exception |
500 INTERNAL_SERVER_ERROR |
MISSING_CONFIGURATION_VALUE |
Configuration value is missing |
422 UNPROCESSABLE_ENTITY |
CONFIGURATION_VALUE_MAX_LENGTH_EXCEEDED |
Configuration value cannot be more than 1000 characters long |
422 UNPROCESSABLE_ENTITY |
SEND_CERTIFICATE_EMAIL_FAILED_MISSING_EMAIL_ADDRESS |
Certificate E-Mail failed, End Entity is missing E-Mail address |
422 UNPROCESSABLE_ENTITY |
CHECK_CONFIGURATION_EMAIL_FAILED_MISSING_USER_EMAIL |
Failed to send test E-Mail, User E-Mail address is missing |
422 UNPROCESSABLE_ENTITY |
CHECK_CONFIGURATION_EMAIL_FAILED_API_CLIENT_NOT_SUPPORTED |
Functionality for sending test E-Mail is not supported for API Clients |
422 UNPROCESSABLE_ENTITY |
CRYPTO_MODULE_WITH_NAME_EXISTS |
A crypto module with the provided name already exists |
409 CONFLICT |
CRYPTO_MODULE_BUILT_IN_PASSWORD_MISSING |
Password for built-in crypto module is missing |
422 UNPROCESSABLE_ENTITY |
INVALID_CRYPTO_MODULE_CONFIGURATION |
Invalid crypto module configuration |
422 UNPROCESSABLE_ENTITY |
CRYPTO_MODULE_NOT_FOUND |
Crypto module does not exist |
404 NOT_FOUND |
CRYPTO_MODULE_CREATE_KEY_PAIR_ERROR |
Crypto module failed to create keypair |
500 INTERNAL_SERVER_ERROR |
CRYPTO_MODULE_CREATE_SECURE_RANDOM_ERROR |
Crypto module failed to create secure random generator |
500 INTERNAL_SERVER_ERROR |
CRYPTO_MODULE_SERVICE_IMPROPER_CONFIGURATION |
Crypto module has not been configured properly |
422 UNPROCESSABLE_ENTITY |
CRYPTO_MODULE_IS_ARCHIVED |
Crypto module is archived |
409 CONFLICT |
CRYPTO_MODULE_ENCRYPT_DATA_ERROR |
Crypto module failed to encrypt data |
500 INTERNAL_SERVER_ERROR |
CRYPTO_MODULE_DECRYPT_ENVELOPED_DATA_ERROR |
Crypto module failed to decrypt CMS enveloped data |
500 INTERNAL_SERVER_ERROR |
CRYPTO_MODULE_ALREADY_ARCHIVED |
Crypto module is already archived |
409 CONFLICT |
CRYPTO_MODULE_ALREADY_UNARCHIVED |
Crypto module is already unarchived |
409 CONFLICT |
ACTIVE_CRYPTO_MODULE_CANNOT_BE_ARCHIVED |
Current active crypto module cannot be archived |
422 UNPROCESSABLE_ENTITY |
ACTIVE_CRYPTO_MODULE_NOT_CONFIGURED |
Active crypto module is not configured |
422 UNPROCESSABLE_ENTITY |
ACTIVE_CRYPTO_MODULE_NOT_CONFIGURED_CORRECTLY |
Active crypto module is not configured properly |
422 UNPROCESSABLE_ENTITY |
PRIVATE_KEY_CANNOT_BE_DECRYPTED |
Private key cannot be decrypted, no connected crypto module found |
422 UNPROCESSABLE_ENTITY |
PRIVATE_KEY_CANNOT_BE_RETRIEVED_FROM_PROVIDER |
Private key cannot be retrieved from certificate provider |
422 UNPROCESSABLE_ENTITY |
ROLE_NOT_FOUND |
Role does not exist |
404 NOT_FOUND |
ROLE_NOT_FOUND_UNPROCESSABLE_ENTITY |
Role does not exist |
422 UNPROCESSABLE_ENTITY |
ROLE_WITH_NAME_EXISTS |
A role with the provided name already exists |
409 CONFLICT |
ROLE_NAME_DOES_NOT_CONTAIN_CLM_PREFIX |
Role name does not contain CLM_ prefix |
400 BAD_REQUEST |
CANNOT_DELETE_ROLE_ADMIN |
Role CLM_ADMIN cannot be deleted |
409 CONFLICT |
CANNOT_UPDATE_ROLE_ADMIN |
Role CLM_ADMIN cannot be edited |
409 CONFLICT |
CREATE_ROLE_WITHOUT_PROVIDING_PERMISSIONS |
Unable to create new role without any permissions |
400 BAD_REQUEST |
UPDATE_ROLE_WITHOUT_PROVIDING_PERMISSIONS |
Unable to update new role without any permissions |
400 BAD_REQUEST |