Interface CfnTLSInspectionConfiguration.CheckCertificateRevocationStatusProperty

All Superinterfaces:
software.amazon.jsii.JsiiSerializable
All Known Implementing Classes:
CfnTLSInspectionConfiguration.CheckCertificateRevocationStatusProperty.Jsii$Proxy
Enclosing class:
CfnTLSInspectionConfiguration

@Stability(Stable) public static interface CfnTLSInspectionConfiguration.CheckCertificateRevocationStatusProperty extends software.amazon.jsii.JsiiSerializable
When enabled, Network Firewall checks if the server certificate presented by the server in the SSL/TLS connection has a revoked or unkown status.

If the certificate has an unknown or revoked status, you must specify the actions that Network Firewall takes on outbound traffic. To check the certificate revocation status, you must also specify a CertificateAuthorityArn in ServerCertificateConfiguration .

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.networkfirewall.*;
 CheckCertificateRevocationStatusProperty checkCertificateRevocationStatusProperty = CheckCertificateRevocationStatusProperty.builder()
         .revokedStatusAction("revokedStatusAction")
         .unknownStatusAction("unknownStatusAction")
         .build();
 

See Also: