Class: Aws::ACMPCA::Types::OcspConfiguration

Inherits:

Struct

Object
Struct
Aws::ACMPCA::Types::OcspConfiguration

show all

Defined in:: gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb

Overview

Note:

When making an API call, you may pass OcspConfiguration data as a hash:

{
  enabled: false, # required
  ocsp_custom_cname: "String253",
}

Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.

When you revoke a certificate, OCSP responses may take up to 60 minutes to reflect the new status.

Constant Summary collapse

SENSITIVE =

[]

Instance Attribute Summary collapse

#enabled ⇒ Boolean
Flag enabling use of the Online Certificate Status Protocol (OCSP) for validating certificate revocation status.
#ocsp_custom_cname ⇒ String
By default, ACM Private CA injects an AWS domain into certificates being validated by the Online Certificate Status Protocol (OCSP).

Instance Attribute Details

#enabled ⇒ `Boolean`

Flag enabling use of the Online Certificate Status Protocol (OCSP) for validating certificate revocation status.

Returns:

(Boolean)

# File 'gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb', line 2610

class OcspConfiguration < Struct.new(
  :enabled,
  :ocsp_custom_cname)
  SENSITIVE = []
  include Aws::Structure
end

#ocsp_custom_cname ⇒ `String`

By default, ACM Private CA injects an AWS domain into certificates being validated by the Online Certificate Status Protocol (OCSP). A customer can alternatively use this object to define a CNAME specifying a customized OCSP domain.

Note: The value of the CNAME must not include a protocol prefix such as "http://" or "https://".

For more information, see Customizing Online Certificate Status Protocol (OCSP) in the AWS Certificate Manager Private Certificate Authority (PCA) User Guide.