AWS::Transfer::Certificate

Imports the signing and encryption certificates that you need to create local (AS2) profiles and partner profiles.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "Type" : "AWS::Transfer::Certificate",
  "Properties" : {
      "ActiveDate" : String,
      "Certificate" : String,
      "CertificateChain" : String,
      "Description" : String,
      "InactiveDate" : String,
      "PrivateKey" : String,
      "Tags" : [ Tag, ... ],
      "Usage" : String
    }
}

YAML


Type: AWS::Transfer::Certificate
Properties:
  ActiveDate: String
  Certificate: String
  CertificateChain: String
  Description: String
  InactiveDate: String
  PrivateKey: String
  Tags: 
    - Tag
  Usage: String

Properties

ActiveDate

An optional date that specifies when the certificate becomes active.

Required: No

Type: String

Update requires: No interruption

Certificate

The file name for the certificate.

Required: Yes

Type: String

Pattern: ^[ -ÿ]*

Minimum: 1

Maximum: 16384

Update requires: Replacement

CertificateChain

The list of certificates that make up the chain for the certificate.

Required: No

Type: String

Pattern: ^[ -ÿ]*

Minimum: 1

Maximum: 2097152

Update requires: Replacement

Description

The name or description that's used to identity the certificate.

Required: No

Type: String

Pattern: ^[\w\- ]*$

Minimum: 1

Maximum: 200

Update requires: No interruption

InactiveDate

An optional date that specifies when the certificate becomes inactive.

Required: No

Type: String

Update requires: No interruption

PrivateKey

The file that contains the private key for the certificate that's being imported.

Required: No

Type: String

Pattern: ^[ -ÿ]*

Minimum: 1

Maximum: 16384

Update requires: Replacement

Tags

Key-value pairs that can be used to group and search for certificates.

Required: No

Type: Array of Tag

Maximum: 50

Update requires: No interruption

Usage

Specifies how this certificate is used. It can be used in the following ways:

SIGNING: For signing AS2 messages
ENCRYPTION: For encrypting AS2 messages
TLS: For securing AS2 communications sent over HTTPS

Required: Yes

Type: String

Allowed values: SIGNING | ENCRYPTION

Update requires: No interruption

Return values

Ref

When you pass the logical ID of this resource to the intrinsic Ref function, Ref returns the certificateId, such as cert-1c698edce1654f869.

For more information about using the Ref function, see Ref.

Fn::GetAtt

The Fn::GetAtt intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.

For more information about using the Fn::GetAtt intrinsic function, see Fn::GetAtt.

Arn: The unique Amazon Resource Name (ARN) for the certificate.
CertificateId: An array of identifiers for the imported certificates. You use this identifier for working with profiles and partner profiles.
NotAfterDate: The final date that the certificate is valid.
NotBeforeDate: The earliest date that the certificate is valid.
Serial: The serial number for the certificate.
Status: The certificate can be either ACTIVE, PENDING_ROTATION, or INACTIVE. PENDING_ROTATION means that this certificate will replace the current certificate when it expires.
Type: If a private key has been specified for the certificate, its type is CERTIFICATE_WITH_PRIVATE_KEY. If there is no private key, the type is CERTIFICATE.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Tag