AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Creates an audit report that lists every time that your CA private key is used. The
report is saved in the Amazon S3 bucket that you specify on input. The IssueCertificate
and RevokeCertificate
actions use the private key.
Both Amazon Web Services Private CA and the IAM principal must have permission to
write to the S3 bucket that you specify. If the IAM principal making the call does
not have permission to write to the bucket, then an exception is thrown. For more
information, see Access
policies for CRLs in Amazon S3.
Amazon Web Services Private CA assets that are stored in Amazon S3 can be protected with encryption. For more information, see Encrypting Your Audit Reports.
You can generate a maximum of one report every 30 minutes.
For .NET Core this operation is only available in asynchronous form. Please refer to CreateCertificateAuthorityAuditReportAsync.
Namespace: Amazon.ACMPCA
Assembly: AWSSDK.ACMPCA.dll
Version: 3.x.y.z
public virtual CreateCertificateAuthorityAuditReportResponse CreateCertificateAuthorityAuditReport( CreateCertificateAuthorityAuditReportRequest request )
Container for the necessary parameters to execute the CreateCertificateAuthorityAuditReport service method.
Exception | Condition |
---|---|
InvalidArgsException | One or more of the specified arguments was not valid. |
InvalidArnException | The requested Amazon Resource Name (ARN) does not refer to an existing resource. |
InvalidStateException | The state of the private CA does not allow this action to occur. |
RequestFailedException | The request has failed for an unspecified reason. |
RequestInProgressException | Your request is already in progress. |
ResourceNotFoundException | A resource such as a private CA, S3 bucket, certificate, audit report, or policy cannot be found. |
.NET Framework:
Supported in: 4.5, 4.0, 3.5