AWS::ACMPCA::CertificateAuthorityActivation - AWS CloudFormation

AWS::ACMPCA::CertificateAuthorityActivation

The AWS::ACMPCA::CertificateAuthorityActivation resource creates and installs a CA certificate on a CA. If no status is specified, the AWS::ACMPCA::CertificateAuthorityActivation resource status defaults to ACTIVE. Once the CA has a CA certificate installed, you can use the resource to toggle the CA status field between ACTIVE and DISABLED.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "Type" : "AWS::ACMPCA::CertificateAuthorityActivation", "Properties" : { "Certificate" : String, "CertificateAuthorityArn" : String, "CertificateChain" : String, "Status" : String } }

YAML

Type: AWS::ACMPCA::CertificateAuthorityActivation Properties: Certificate: String CertificateAuthorityArn: String CertificateChain: String Status: String

Properties

Certificate

The Base64 PEM-encoded certificate authority certificate.

Required: Yes

Type: String

Update requires: No interruption

CertificateAuthorityArn

The Amazon Resource Name (ARN) of your private CA.

Required: Yes

Type: String

Update requires: Replacement

CertificateChain

The Base64 PEM-encoded certificate chain that chains up to the root CA certificate that you used to sign your private CA certificate.

Required: No

Type: String

Update requires: No interruption

Status

Status of your private CA.

Required: No

Type: String

Update requires: No interruption

Return values

Ref

The Amazon Resource Name (ARN) of the certificate authority.

Fn::GetAtt

The Fn::GetAtt intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.

For more information about Fn::GetAtt intrinsic function, see Fn::GetAtt.

CompleteCertificateChain

The complete Base64 PEM-encoded certificate chain, including the certificate authority certificate.