Interface CfnTemplate.IPrivateKeyFlagsV4Property

Private key flags for v4 templates specify the client compatibility, if the private key can be exported, if user input is required when using a private key, if an alternate signature algorithm should be used, and if certificates are renewed using the same private key.

Namespace: Amazon.CDK.AwsPcaconnectorad
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public interface IPrivateKeyFlagsV4Property
Syntax (vb)
Public Interface IPrivateKeyFlagsV4Property
Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html

ExampleMetadata: fixture=_generated

Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.Aws_pcaconnectorad;

var privateKeyFlagsV4Property = new PrivateKeyFlagsV4Property {
    ClientVersion = "clientVersion",

    // the properties below are optional
    ExportableKey = false,
    RequireAlternateSignatureAlgorithm = false,
    RequireSameKeyRenewal = false,
    StrongKeyProtectionRequired = false,
    UseLegacyProvider = false
};

Synopsis

Properties

ClientVersion

Defines the minimum client compatibility.
ExportableKey

Allows the private key to be exported.
RequireAlternateSignatureAlgorithm

Requires the PKCS #1 v2.1 signature format for certificates. You should verify that your CA, objects, and applications can accept this signature format.
RequireSameKeyRenewal

Renew certificate using the same private key.
StrongKeyProtectionRequired

Require user input when using the private key for enrollment.
UseLegacyProvider

Specifies the cryptographic service provider category used to generate private keys.

Properties

ClientVersion

Defines the minimum client compatibility.

string ClientVersion { get; }
Property Value

System.String

Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-clientversion

ExportableKey

Allows the private key to be exported.

virtual object ExportableKey { get; }
Property Value

System.Object

Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-exportablekey

RequireAlternateSignatureAlgorithm

Requires the PKCS #1 v2.1 signature format for certificates. You should verify that your CA, objects, and applications can accept this signature format.

virtual object RequireAlternateSignatureAlgorithm { get; }
Property Value

System.Object

Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-requirealternatesignaturealgorithm

RequireSameKeyRenewal

Renew certificate using the same private key.

virtual object RequireSameKeyRenewal { get; }
Property Value

System.Object

Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-requiresamekeyrenewal

StrongKeyProtectionRequired

Require user input when using the private key for enrollment.

virtual object StrongKeyProtectionRequired { get; }
Property Value

System.Object

Remarks

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-strongkeyprotectionrequired

UseLegacyProvider

Specifies the cryptographic service provider category used to generate private keys.

virtual object UseLegacyProvider { get; }
Property Value

System.Object

Remarks

Set to TRUE to use Legacy Cryptographic Service Providers and FALSE to use Key Storage Providers.

See: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-template-privatekeyflagsv4.html#cfn-pcaconnectorad-template-privatekeyflagsv4-uselegacyprovider