PrivateKeyFlagsV3
Private key flags for v3 templates specify the client compatibility, if the private key can be exported, if user input is required when using a private key, and if an alternate signature algorithm should be used.
Contents
- ClientVersion
-
Defines the minimum client compatibility.
Type: String
Valid Values:
WINDOWS_SERVER_2008 | WINDOWS_SERVER_2008_R2 | WINDOWS_SERVER_2012 | WINDOWS_SERVER_2012_R2 | WINDOWS_SERVER_2016
Required: Yes
- ExportableKey
-
Allows the private key to be exported.
Type: Boolean
Required: No
- RequireAlternateSignatureAlgorithm
-
Reguires the PKCS #1 v2.1 signature format for certificates. You should verify that your CA, objects, and applications can accept this signature format.
Type: Boolean
Required: No
- StrongKeyProtectionRequired
-
Requirer user input when using the private key for enrollment.
Type: Boolean
Required: No
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: