KeyUsage

Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.

Contents

CRLSign

Key can be used to sign CRLs.

Type: Boolean

Required: No

DataEncipherment

Key can be used to decipher data.

Type: Boolean

Required: No

DecipherOnly

Key can be used only to decipher data.

Type: Boolean

Required: No

DigitalSignature

Key can be used for digital signing.

Type: Boolean

Required: No

EncipherOnly

Key can be used only to encipher data.

Type: Boolean

Required: No

KeyAgreement

Key can be used in a key-agreement protocol.

Type: Boolean

Required: No

KeyCertSign

Key can be used to sign certificates.

Type: Boolean

Required: No

KeyEncipherment

Key can be used to encipher data.

Type: Boolean

Required: No

NonRepudiation

Key can be used for non-repudiation.

Type: Boolean

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

• AWS SDK for C++

• AWS SDK for Java V2

• AWS SDK for Ruby V3