interface PrivateKeyFlagsV3Property

Language	Type name
.NET	Amazon.CDK.aws_pcaconnectorad.CfnTemplate.PrivateKeyFlagsV3Property
Go	github.com/aws/aws-cdk-go/awscdk/v2/awspcaconnectorad#CfnTemplate_PrivateKeyFlagsV3Property
Java	software.amazon.awscdk.services.pcaconnectorad.CfnTemplate.PrivateKeyFlagsV3Property
Python	aws_cdk.aws_pcaconnectorad.CfnTemplate.PrivateKeyFlagsV3Property
TypeScript	aws-cdk-lib » aws_pcaconnectorad » CfnTemplate » PrivateKeyFlagsV3Property

Private key flags for v3 templates specify the client compatibility, if the private key can be exported, if user input is required when using a private key, and if an alternate signature algorithm should be used.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv3.html

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_pcaconnectorad as pcaconnectorad } from 'aws-cdk-lib';
const privateKeyFlagsV3Property: pcaconnectorad.CfnTemplate.PrivateKeyFlagsV3Property = {
  clientVersion: 'clientVersion',

  // the properties below are optional
  exportableKey: false,
  requireAlternateSignatureAlgorithm: false,
  strongKeyProtectionRequired: false,
};

Properties

Name	Type	Description
clientVersion	string	Defines the minimum client compatibility.
exportableKey?	boolean | IResolvable	Allows the private key to be exported.
requireAlternateSignatureAlgorithm?	boolean | IResolvable	Reguires the PKCS #1 v2.1 signature format for certificates. You should verify that your CA, objects, and applications can accept this signature format.
strongKeyProtectionRequired?	boolean | IResolvable	Requirer user input when using the private key for enrollment.

---

clientVersion

Type: string

Defines the minimum client compatibility.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv3.html#cfn-pcaconnectorad-template-privatekeyflagsv3-clientversion

---

exportableKey?

Type: boolean | IResolvable (optional)

Allows the private key to be exported.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv3.html#cfn-pcaconnectorad-template-privatekeyflagsv3-exportablekey

---

requireAlternateSignatureAlgorithm?

Type: boolean | IResolvable (optional)

Reguires the PKCS #1 v2.1 signature format for certificates. You should verify that your CA, objects, and applications can accept this signature format.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv3.html#cfn-pcaconnectorad-template-privatekeyflagsv3-requirealternatesignaturealgorithm

---

strongKeyProtectionRequired?

Type: boolean | IResolvable (optional)

Requirer user input when using the private key for enrollment.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv3.html#cfn-pcaconnectorad-template-privatekeyflagsv3-strongkeyprotectionrequired