AWS::ACMPCA::CertificateAuthority RevocationConfiguration - AWS CloudFormation

AWS::ACMPCA::CertificateAuthority RevocationConfiguration

Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

Properties

CrlConfiguration

Configuration of the certificate revocation list (CRL), if any, maintained by your private CA.

Required: No

Type: CrlConfiguration

Update requires: No interruption

OcspConfiguration

Configuration of Online Certificate Status Protocol (OCSP) support, if any, maintained by your private CA.

Required: No

Type: OcspConfiguration

Update requires: No interruption