Class: Aws::ACMPCA::Types::RevocationConfiguration

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb

Overview

Note:

When making an API call, you may pass RevocationConfiguration data as a hash:

{
  crl_configuration: {
    enabled: false, # required
    expiration_in_days: 1,
    custom_cname: "String253",
    s3_bucket_name: "String3To255",
    s3_object_acl: "PUBLIC_READ", # accepts PUBLIC_READ, BUCKET_OWNER_FULL_CONTROL
  },
  ocsp_configuration: {
    enabled: false, # required
    ocsp_custom_cname: "String253",
  },
}

Certificate revocation information used by the CreateCertificateAuthority and UpdateCertificateAuthority actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see RevokeCertificate and Setting up a certificate revocation method in the AWS Certificate Manager Private Certificate Authority (PCA) User Guide.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#crl_configurationTypes::CrlConfiguration

Configuration of the certificate revocation list (CRL), if any, maintained by your private CA. A CRL is typically updated approximately 30 minutes after a certificate is revoked. If for any reason a CRL update fails, ACM Private CA makes further attempts every 15 minutes.



2993
2994
2995
2996
2997
2998
# File 'gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb', line 2993

class RevocationConfiguration < Struct.new(
  :crl_configuration,
  :ocsp_configuration)
  SENSITIVE = []
  include Aws::Structure
end

#ocsp_configurationTypes::OcspConfiguration

Configuration of Online Certificate Status Protocol (OCSP) support, if any, maintained by your private CA. When you revoke a certificate, OCSP responses may take up to 60 minutes to reflect the new status.



2993
2994
2995
2996
2997
2998
# File 'gems/aws-sdk-acmpca/lib/aws-sdk-acmpca/types.rb', line 2993

class RevocationConfiguration < Struct.new(
  :crl_configuration,
  :ocsp_configuration)
  SENSITIVE = []
  include Aws::Structure
end