DeleteCertificate
Deletes the specified certificate.
A certificate cannot be deleted if it has a policy or IoT thing attached to it or if its status is set to ACTIVE. To delete a certificate, first use the DetachPolicy action to detach all policies. Next, use the UpdateCertificate action to set the certificate to the INACTIVE status.
Requires permission to access the DeleteCertificate action.
Request Syntax
DELETE /certificates/certificateId?forceDelete=forceDelete HTTP/1.1
URI Request Parameters
The request uses the following URI parameters.
- certificateId
-
The ID of the certificate. (The last part of the certificate ARN contains the certificate ID.)
Length Constraints: Fixed length of 64.
Pattern:
(0x)?[a-fA-F0-9]+Required: Yes
- forceDelete
-
Forces the deletion of a certificate if it is inactive and is not attached to an IoT thing.
Request Body
The request does not have a request body.
Response Syntax
HTTP/1.1 200
Response Elements
If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.
Errors
- CertificateStateException
-
The certificate operation is not allowed.
HTTP Status Code: 406
- DeleteConflictException
-
You can't delete the resource because it is attached to one or more resources.
HTTP Status Code: 409
- InternalFailureException
-
An unexpected error has occurred.
HTTP Status Code: 500
- InvalidRequestException
-
The request is not valid.
HTTP Status Code: 400
- ResourceNotFoundException
-
The specified resource does not exist.
HTTP Status Code: 404
- ServiceUnavailableException
-
The service is temporarily unavailable.
HTTP Status Code: 503
- ThrottlingException
-
The rate exceeds the limit.
HTTP Status Code: 400
- UnauthorizedException
-
You are not authorized to perform this operation.
HTTP Status Code: 401
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
