Contains information about your private certificate authority (CA). Your private CA can issue and revoke X.509 digital certificates. Digital certificates verify that the entity named in the certificate Subject field owns or controls the public key contained in the Subject Public Key Info field. Call the CreateCertificateAuthority action to create your private CA. You must then call the GetCertificateAuthorityCertificate action to retrieve a private CA certificate signing request (CSR). Sign the CSR with your Amazon Web Services Private CA-hosted or on-premises root or subordinate CA certificate. Call the ImportCertificateAuthorityCertificate action to import the signed certificate into Certificate Manager (ACM).
Inheritance Hierarchy
Namespace: Amazon.ACMPCA.Model
Assembly: AWSSDK.ACMPCA.dll
Version: 3.x.y.z
Syntax
public class CertificateAuthority
The CertificateAuthority type exposes the following members
Constructors
| Name | Description | |
|---|---|---|
|
CertificateAuthority() |
Properties
| Name | Type | Description | |
|---|---|---|---|
|
|
Arn | System.String |
Gets and sets the property Arn.
Amazon Resource Name (ARN) for your private certificate authority (CA). The format
is |
|
|
CertificateAuthorityConfiguration | Amazon.ACMPCA.Model.CertificateAuthorityConfiguration |
Gets and sets the property CertificateAuthorityConfiguration. Your private CA configuration. |
|
|
CreatedAt | System.DateTime |
Gets and sets the property CreatedAt. Date and time at which your private CA was created. |
|
|
FailureReason | Amazon.ACMPCA.FailureReason |
Gets and sets the property FailureReason. Reason the request to create your private CA failed. |
|
|
KeyStorageSecurityStandard | Amazon.ACMPCA.KeyStorageSecurityStandard |
Gets and sets the property KeyStorageSecurityStandard. Defines a cryptographic key management compliance standard used for handling CA keys. Default: FIPS_140_2_LEVEL_3_OR_HIGHER
Note: Amazon Web Services Region ap-northeast-3 supports only FIPS_140_2_LEVEL_2_OR_HIGHER.
You must explicitly specify this parameter and value when creating a CA in that Region.
Specifying a different value (or no value) results in an |
|
|
LastStateChangeAt | System.DateTime |
Gets and sets the property LastStateChangeAt. Date and time at which your private CA was last updated. |
|
|
NotAfter | System.DateTime |
Gets and sets the property NotAfter. Date and time after which your private CA certificate is not valid. |
|
|
NotBefore | System.DateTime |
Gets and sets the property NotBefore. Date and time before which your private CA certificate is not valid. |
|
|
OwnerAccount | System.String |
Gets and sets the property OwnerAccount. The Amazon Web Services account ID that owns the certificate authority. |
|
|
RestorableUntil | System.DateTime |
Gets and sets the property RestorableUntil.
The period during which a deleted CA can be restored. For more information, see the
|
|
|
RevocationConfiguration | Amazon.ACMPCA.Model.RevocationConfiguration |
Gets and sets the property RevocationConfiguration. Information about the Online Certificate Status Protocol (OCSP) configuration or certificate revocation list (CRL) created and maintained by your private CA. |
|
|
Serial | System.String |
Gets and sets the property Serial. Serial number of your private CA. |
|
|
Status | Amazon.ACMPCA.CertificateAuthorityStatus |
Gets and sets the property Status. Status of your private CA. |
|
|
Type | Amazon.ACMPCA.CertificateAuthorityType |
Gets and sets the property Type. Type of your private CA. |
|
|
UsageMode | Amazon.ACMPCA.CertificateAuthorityUsageMode |
Gets and sets the property UsageMode. Specifies whether the CA issues general-purpose certificates that typically require a revocation mechanism, or short-lived certificates that may optionally omit revocation because they expire quickly. Short-lived certificate validity is limited to seven days. The default value is GENERAL_PURPOSE. |
Version Information
.NET:
Supported in: 8.0 and newer, Core 3.1
.NET Standard:
Supported in: 2.0
.NET Framework:
Supported in: 4.5 and newer, 3.5