AWS::Transfer::Certificate

Imports the signing and encryption certificates that you need to create local (AS2) profiles and partner profiles.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "Type" : "AWS::Transfer::Certificate",
  "Properties" : {
      "ActiveDate" : String,
      "Certificate" : String,
      "CertificateChain" : String,
      "Description" : String,
      "InactiveDate" : String,
      "PrivateKey" : String,
      "Tags" : [ Tag, ... ],
      "Usage" : String
    }
}

YAML


Type: AWS::Transfer::Certificate
Properties: 
  ActiveDate: String
  Certificate: String
  CertificateChain: String
  Description: String
  InactiveDate: String
  PrivateKey: String
  Tags: 
    - Tag
  Usage: String

Properties

ActiveDate

An optional date that specifies when the certificate becomes active.

Required: No

Type: String

Update requires: No interruption

Certificate

The file name for the certificate.

Required: Yes

Type: String

Minimum: 1

Maximum: 16384

Pattern: ^[\u0009\u000A\u000D\u0020-\u00FF]*

Update requires: Replacement

CertificateChain

The list of certificates that make up the chain for the certificate.

Required: No

Type: String

Minimum: 1

Maximum: 2097152

Pattern: ^[\u0009\u000A\u000D\u0020-\u00FF]*

Update requires: Replacement

Description

The name or description that's used to identity the certificate.

Required: No

Type: String

Minimum: 1

Maximum: 200

Pattern: ^[\p{Graph}]+

Update requires: No interruption

InactiveDate

An optional date that specifies when the certificate becomes inactive.

Required: No

Type: String

Update requires: No interruption

PrivateKey

The file that contains the private key for the certificate that's being imported.

Required: No

Type: String

Update requires: Replacement

Tags

Key-value pairs that can be used to group and search for certificates.

Required: No

Type: List of Tag

Maximum: 50

Update requires: No interruption

Usage

Specifies whether this certificate is used for signing or encryption.

Required: Yes

Type: String

Allowed values: ENCRYPTION | SIGNING

Update requires: No interruption

Return values

Ref

When you pass the logical ID of this resource to the intrinsic Reffunction, Refreturns the certificateId, such as cert-1c698edce1654f869.

For more information about using the Reffunction, see Ref.

Fn::GetAtt

The Fn::GetAttintrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.

For more information about using the Fn::GetAttintrinsic function, see Fn::GetAtt.

Arn: The unique Amazon Resource Name (ARN) for the certificate.
CertificateId: An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.
NotAfterDate: The final date that the certificate is valid.
NotBeforeDate: The earliest date that the certificate is valid.
Serial: The serial number for the certificate.
Status: The certificate can be either ACTIVE, PENDING_ROTATION, or INACTIVE. PENDING_ROTATION means that this certificate will replace the current certificate when it expires.
Type: If a private key has been specified for the certificate, its type is CERTIFICATE_WITH_PRIVATE_KEY. If there is no private key, the type is CERTIFICATE.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AWS::Transfer::Agreement

AWS::Transfer::Connector