Namespace Amazon.CDK.AWS.ACMPCA
AWS::ACMPCA Construct Library
This module is part of the AWS Cloud Development Kit project.
using Amazon.CDK.AWS.ACMPCA;Certificate Authority
This package contains a CertificateAuthority class.
At the moment, you cannot create new Authorities using it,
but you can import existing ones using the fromCertificateAuthorityArn static method:
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CA", "arn:aws:acm-pca:us-east-1:123456789012:certificate-authority/023077d8-2bfa-4eb0-8f22-05c96deade77");Low-level Cfn* classes
You can always use the low-level classes
(starting with Cfn*) to create resources like the Certificate Authority:
var cfnCertificateAuthority = new CfnCertificateAuthority(this, "CA", new CfnCertificateAuthorityProps {
Type = "ROOT",
KeyAlgorithm = "RSA_2048",
SigningAlgorithm = "SHA256WITHRSA",
Subject = new SubjectProperty {
Country = "US",
Organization = "string",
OrganizationalUnit = "string",
DistinguishedNameQualifier = "string",
State = "string",
CommonName = "123",
SerialNumber = "string",
Locality = "string",
Title = "string",
Surname = "string",
GivenName = "string",
Initials = "DG",
Pseudonym = "string",
GenerationQualifier = "DBG"
}
});If you need to pass the higher-level ICertificateAuthority somewhere,
you can get it from the lower-level CfnCertificateAuthority using the same fromCertificateAuthorityArn method:
CfnCertificateAuthority cfnCertificateAuthority;
var certificateAuthority = CertificateAuthority.FromCertificateAuthorityArn(this, "CertificateAuthority", cfnCertificateAuthority.AttrArn);Classes
| Certificate |
Defines a Certificate for ACMPCA. |
| Cfn |
The |
| Cfn |
Contains X.509 certificate information to be placed in an issued certificate. An |
| Cfn |
Defines the X.500 relative distinguished name (RDN). |
| Cfn |
Specifies the X.509 extension information for a certificate. |
| Cfn |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
| Cfn |
Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
| Cfn |
Contains X.509 extension information for a certificate. |
| Cfn |
Describes an ASN.1 X.400 |
| Cfn |
Defines one or more purposes for which the key contained in the certificate can be used. |
| Cfn |
Defines a custom ASN.1 X.400 |
| Cfn |
Defines the X.509 |
| Cfn |
Modifies the |
| Cfn |
Defines a |
| Cfn |
Contains information about the certificate subject. |
| Cfn |
Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
| Cfn |
Use the |
| Cfn |
Provides access information used by the |
| Cfn |
Describes the type and format of extension access. |
| Cfn |
Contains configuration information for a certificate revocation list (CRL). |
| Cfn |
Contains configuration information for the default behavior of the CRL Distribution Point (CDP) extension in certificates issued by your CA. |
| Cfn |
Describes the certificate extensions to be added to the certificate signing request (CSR). |
| Cfn |
Defines the X.500 relative distinguished name (RDN). |
| Cfn |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
| Cfn |
Describes an ASN.1 X.400 |
| Cfn |
Defines one or more purposes for which the key contained in the certificate can be used. |
| Cfn |
Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
| Cfn |
Defines a custom ASN.1 X.400 |
| Cfn |
Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
| Cfn |
ASN1 subject for the certificate authority. |
| Cfn |
The |
| Cfn |
Properties for defining a |
| Cfn |
Properties for defining a |
| Cfn |
Properties for defining a |
| Cfn |
Grants permissions to the AWS Certificate Manager ( ACM ) service principal ( |
| Cfn |
Properties for defining a |
Interfaces
| Cfn |
Contains X.509 certificate information to be placed in an issued certificate. An |
| Cfn |
Defines the X.500 relative distinguished name (RDN). |
| Cfn |
Specifies the X.509 extension information for a certificate. |
| Cfn |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
| Cfn |
Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the |
| Cfn |
Contains X.509 extension information for a certificate. |
| Cfn |
Describes an ASN.1 X.400 |
| Cfn |
Defines one or more purposes for which the key contained in the certificate can be used. |
| Cfn |
Defines a custom ASN.1 X.400 |
| Cfn |
Defines the X.509 |
| Cfn |
Modifies the |
| Cfn |
Defines a |
| Cfn |
Contains information about the certificate subject. |
| Cfn |
Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. |
| Cfn |
Provides access information used by the |
| Cfn |
Describes the type and format of extension access. |
| Cfn |
Contains configuration information for a certificate revocation list (CRL). |
| Cfn |
Contains configuration information for the default behavior of the CRL Distribution Point (CDP) extension in certificates issued by your CA. |
| Cfn |
Describes the certificate extensions to be added to the certificate signing request (CSR). |
| Cfn |
Defines the X.500 relative distinguished name (RDN). |
| Cfn |
Describes an Electronic Data Interchange (EDI) entity as described in as defined in Subject Alternative Name in RFC 5280. |
| Cfn |
Describes an ASN.1 X.400 |
| Cfn |
Defines one or more purposes for which the key contained in the certificate can be used. |
| Cfn |
Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. |
| Cfn |
Defines a custom ASN.1 X.400 |
| Cfn |
Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate in the AWS Private CA API Reference and Setting up a certificate revocation method in the AWS Private CA User Guide . |
| Cfn |
ASN1 subject for the certificate authority. |
| ICertificate |
Interface which all CertificateAuthority based class must implement. |
| ICfn |
Properties for defining a |
| ICfn |
Properties for defining a |
| ICfn |
Properties for defining a |
| ICfn |
Properties for defining a |