Class: Aws::ACMPCA::Types::RevocationConfiguration

Inherits:

Struct

• Object
• Struct
• Aws::ACMPCA::Types::RevocationConfiguration

Defined in:

gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb

Overview

Note:

When making an API call, you may pass RevocationConfiguration data as a hash:

{
  crl_configuration: {
    enabled: false, # required
    expiration_in_days: 1,
    custom_cname: "String253",
    s3_bucket_name: "String3To255",
    s3_object_acl: "PUBLIC_READ", # accepts PUBLIC_READ, BUCKET_OWNER_FULL_CONTROL
  },
  ocsp_configuration: {
    enabled: false, # required
    ocsp_custom_cname: "String253",
  },
}

Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate and Setting up a certificate revocation method in the AWS Certificate Manager Private Certificate Authority (PCA) User Guide.

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #crl_configuration ⇒ Types::CrlConfiguration

  Configuration of the certificate revocation list (CRL), if any, maintained by your private CA.

• #ocsp_configuration ⇒ Types::OcspConfiguration

  Configuration of Online Certificate Status Protocol (OCSP) support, if any, maintained by your private CA.

Instance Attribute Details

#crl_configuration ⇒ Types::CrlConfiguration

Configuration of the certificate revocation list (CRL), if any, maintained by your private CA. A CRL is typically updated approximately 30 minutes after a certificate is revoked. If for any reason a CRL update fails, ACM Private CA makes further attempts every 15 minutes.

Returns:

• (Types::CrlConfiguration)

# File 'gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb', line 2993

class RevocationConfiguration < Struct.new(
  :crl_configuration,
  :ocsp_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#ocsp_configuration ⇒ Types::OcspConfiguration

Configuration of Online Certificate Status Protocol (OCSP) support, if any, maintained by your private CA. When you revoke a certificate, OCSP responses may take up to 60 minutes to reflect the new status.

Returns:

• (Types::OcspConfiguration)

# File 'gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb', line 2993

class RevocationConfiguration < Struct.new(
  :crl_configuration,
  :ocsp_configuration)
  SENSITIVE = []
  include Aws::Structure
end