avi 31.1.1, Apr 14 25

avi 31.1.1 published on Monday, Apr 14, 2025 by vmware

avi.Sslkeyandcertificate

Explore with Pulumi AI

avi 31.1.1 published on Monday, Apr 14, 2025 by vmware

<!–

Copyright 2021 VMware, Inc.
SPDX-License-Identifier: Mozilla Public License 2.0

–>

layout: “avi”

page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.

avi.Sslkeyandcertificate

The SSLKeyAndCertificate resource allows the creation and management of Avi SSLKeyAndCertificate

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as avi from "@pulumi/avi";

const foo = new avi.Sslkeyandcertificate("foo", {tenantRef: "/api/tenant/?name=admin"});

import pulumi
import pulumi_avi as avi

foo = avi.Sslkeyandcertificate("foo", tenant_ref="/api/tenant/?name=admin")

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/avi/v31/avi"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := avi.NewSslkeyandcertificate(ctx, "foo", &avi.SslkeyandcertificateArgs{
			TenantRef: pulumi.String("/api/tenant/?name=admin"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Avi = Pulumi.Avi;

return await Deployment.RunAsync(() => 
{
    var foo = new Avi.Sslkeyandcertificate("foo", new()
    {
        TenantRef = "/api/tenant/?name=admin",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.avi.Sslkeyandcertificate;
import com.pulumi.avi.SslkeyandcertificateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var foo = new Sslkeyandcertificate("foo", SslkeyandcertificateArgs.builder()
            .tenantRef("/api/tenant/?name=admin")
            .build());

    }
}

resources:
  foo:
    type: avi:Sslkeyandcertificate
    properties:
      tenantRef: /api/tenant/?name=admin

Create Sslkeyandcertificate Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Sslkeyandcertificate(name: string, args: SslkeyandcertificateArgs, opts?: CustomResourceOptions);

@overload
def Sslkeyandcertificate(resource_name: str,
                         args: SslkeyandcertificateArgs,
                         opts: Optional[ResourceOptions] = None)

@overload
def Sslkeyandcertificate(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
                         key: Optional[str] = None,
                         sslkeyandcertificate_id: Optional[str] = None,
                         certificate_base64: Optional[str] = None,
                         configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
                         key_base64: Optional[str] = None,
                         dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
                         enable_ocsp_stapling: Optional[str] = None,
                         enckey_base64: Optional[str] = None,
                         enckey_name: Optional[str] = None,
                         format: Optional[str] = None,
                         hardwaresecuritymodulegroup_ref: Optional[str] = None,
                         import_key_to_hsm: Optional[str] = None,
                         certificate_management_profile_ref: Optional[str] = None,
                         is_federated: Optional[str] = None,
                         created_by: Optional[str] = None,
                         key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
                         key_passphrase: Optional[str] = None,
                         markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
                         name: Optional[str] = None,
                         ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
                         ocsp_error_status: Optional[str] = None,
                         ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
                         ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
                         ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
                         status: Optional[str] = None,
                         tenant_ref: Optional[str] = None,
                         type: Optional[str] = None,
                         uuid: Optional[str] = None)

func NewSslkeyandcertificate(ctx *Context, name string, args SslkeyandcertificateArgs, opts ...ResourceOption) (*Sslkeyandcertificate, error)

public Sslkeyandcertificate(string name, SslkeyandcertificateArgs args, CustomResourceOptions? opts = null)

public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args)
public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args, CustomResourceOptions options)

type: avi:Sslkeyandcertificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args SslkeyandcertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SslkeyandcertificateArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SslkeyandcertificateArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SslkeyandcertificateArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args SslkeyandcertificateArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var sslkeyandcertificateResource = new Avi.Sslkeyandcertificate("sslkeyandcertificateResource", new()
{
    Certificates = new[]
    {
        new Avi.Inputs.SslkeyandcertificateCertificateArgs
        {
            Certificate = "string",
            CertificateSigningRequest = "string",
            ChainVerified = "string",
            DaysUntilExpire = "string",
            ExpiryStatus = "string",
            Fingerprint = "string",
            Issuers = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateIssuerArgs
                {
                    CommonName = "string",
                    Country = "string",
                    DistinguishedName = "string",
                    EmailAddress = "string",
                    Locality = "string",
                    Organization = "string",
                    OrganizationUnit = "string",
                    State = "string",
                },
            },
            KeyParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateKeyParamArgs
                {
                    Algorithm = "string",
                    EcParams = new[]
                    {
                        new Avi.Inputs.SslkeyandcertificateCertificateKeyParamEcParamArgs
                        {
                            Curve = "string",
                        },
                    },
                    RsaParams = new[]
                    {
                        new Avi.Inputs.SslkeyandcertificateCertificateKeyParamRsaParamArgs
                        {
                            Exponent = "string",
                            KeySize = "string",
                        },
                    },
                },
            },
            NotAfter = "string",
            NotBefore = "string",
            PublicKey = "string",
            SelfSigned = "string",
            SerialNumber = "string",
            Signature = "string",
            SignatureAlgorithm = "string",
            SubjectAltNames = new[]
            {
                "string",
            },
            Subjects = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateSubjectArgs
                {
                    CommonName = "string",
                    Country = "string",
                    DistinguishedName = "string",
                    EmailAddress = "string",
                    Locality = "string",
                    Organization = "string",
                    OrganizationUnit = "string",
                    State = "string",
                },
            },
            Text = "string",
            Version = "string",
        },
    },
    Key = "string",
    SslkeyandcertificateId = "string",
    CertificateBase64 = "string",
    ConfigpbAttributes = new[]
    {
        new Avi.Inputs.SslkeyandcertificateConfigpbAttributeArgs
        {
            Version = "string",
        },
    },
    KeyBase64 = "string",
    DynamicParams = new[]
    {
        new Avi.Inputs.SslkeyandcertificateDynamicParamArgs
        {
            Name = "string",
            IsDynamic = "string",
            IsSensitive = "string",
            Value = "string",
        },
    },
    EnableOcspStapling = "string",
    EnckeyBase64 = "string",
    EnckeyName = "string",
    Format = "string",
    HardwaresecuritymodulegroupRef = "string",
    ImportKeyToHsm = "string",
    CertificateManagementProfileRef = "string",
    IsFederated = "string",
    CreatedBy = "string",
    KeyParams = new[]
    {
        new Avi.Inputs.SslkeyandcertificateKeyParamArgs
        {
            Algorithm = "string",
            EcParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateKeyParamEcParamArgs
                {
                    Curve = "string",
                },
            },
            RsaParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateKeyParamRsaParamArgs
                {
                    Exponent = "string",
                    KeySize = "string",
                },
            },
        },
    },
    KeyPassphrase = "string",
    Markers = new[]
    {
        new Avi.Inputs.SslkeyandcertificateMarkerArgs
        {
            Key = "string",
            Values = new[]
            {
                "string",
            },
        },
    },
    Name = "string",
    OcspConfigs = new[]
    {
        new Avi.Inputs.SslkeyandcertificateOcspConfigArgs
        {
            FailedOcspJobsRetryInterval = "string",
            MaxTries = "string",
            OcspReqInterval = "string",
            OcspRespTimeout = "string",
            ResponderUrlLists = new[]
            {
                "string",
            },
            UrlAction = "string",
        },
    },
    OcspErrorStatus = "string",
    OcspResponderUrlListFromCerts = new[]
    {
        "string",
    },
    OcspResponseInfos = new[]
    {
        new Avi.Inputs.SslkeyandcertificateOcspResponseInfoArgs
        {
            CertStatus = "string",
            OcspRespFromResponderUrl = "string",
            OcspResponse = "string",
            NextUpdate = "string",
            RevocationReason = "string",
            RevocationTime = "string",
            ThisUpdate = "string",
        },
    },
    CaCerts = new[]
    {
        new Avi.Inputs.SslkeyandcertificateCaCertArgs
        {
            CaRef = "string",
            Name = "string",
        },
    },
    Status = "string",
    TenantRef = "string",
    Type = "string",
    Uuid = "string",
});

example, err := avi.NewSslkeyandcertificate(ctx, "sslkeyandcertificateResource", &avi.SslkeyandcertificateArgs{
	Certificates: avi.SslkeyandcertificateCertificateArray{
		&avi.SslkeyandcertificateCertificateArgs{
			Certificate:               pulumi.String("string"),
			CertificateSigningRequest: pulumi.String("string"),
			ChainVerified:             pulumi.String("string"),
			DaysUntilExpire:           pulumi.String("string"),
			ExpiryStatus:              pulumi.String("string"),
			Fingerprint:               pulumi.String("string"),
			Issuers: avi.SslkeyandcertificateCertificateIssuerArray{
				&avi.SslkeyandcertificateCertificateIssuerArgs{
					CommonName:        pulumi.String("string"),
					Country:           pulumi.String("string"),
					DistinguishedName: pulumi.String("string"),
					EmailAddress:      pulumi.String("string"),
					Locality:          pulumi.String("string"),
					Organization:      pulumi.String("string"),
					OrganizationUnit:  pulumi.String("string"),
					State:             pulumi.String("string"),
				},
			},
			KeyParams: avi.SslkeyandcertificateCertificateKeyParamArray{
				&avi.SslkeyandcertificateCertificateKeyParamArgs{
					Algorithm: pulumi.String("string"),
					EcParams: avi.SslkeyandcertificateCertificateKeyParamEcParamArray{
						&avi.SslkeyandcertificateCertificateKeyParamEcParamArgs{
							Curve: pulumi.String("string"),
						},
					},
					RsaParams: avi.SslkeyandcertificateCertificateKeyParamRsaParamArray{
						&avi.SslkeyandcertificateCertificateKeyParamRsaParamArgs{
							Exponent: pulumi.String("string"),
							KeySize:  pulumi.String("string"),
						},
					},
				},
			},
			NotAfter:           pulumi.String("string"),
			NotBefore:          pulumi.String("string"),
			PublicKey:          pulumi.String("string"),
			SelfSigned:         pulumi.String("string"),
			SerialNumber:       pulumi.String("string"),
			Signature:          pulumi.String("string"),
			SignatureAlgorithm: pulumi.String("string"),
			SubjectAltNames: pulumi.StringArray{
				pulumi.String("string"),
			},
			Subjects: avi.SslkeyandcertificateCertificateSubjectArray{
				&avi.SslkeyandcertificateCertificateSubjectArgs{
					CommonName:        pulumi.String("string"),
					Country:           pulumi.String("string"),
					DistinguishedName: pulumi.String("string"),
					EmailAddress:      pulumi.String("string"),
					Locality:          pulumi.String("string"),
					Organization:      pulumi.String("string"),
					OrganizationUnit:  pulumi.String("string"),
					State:             pulumi.String("string"),
				},
			},
			Text:    pulumi.String("string"),
			Version: pulumi.String("string"),
		},
	},
	Key:                    pulumi.String("string"),
	SslkeyandcertificateId: pulumi.String("string"),
	CertificateBase64:      pulumi.String("string"),
	ConfigpbAttributes: avi.SslkeyandcertificateConfigpbAttributeArray{
		&avi.SslkeyandcertificateConfigpbAttributeArgs{
			Version: pulumi.String("string"),
		},
	},
	KeyBase64: pulumi.String("string"),
	DynamicParams: avi.SslkeyandcertificateDynamicParamArray{
		&avi.SslkeyandcertificateDynamicParamArgs{
			Name:        pulumi.String("string"),
			IsDynamic:   pulumi.String("string"),
			IsSensitive: pulumi.String("string"),
			Value:       pulumi.String("string"),
		},
	},
	EnableOcspStapling:              pulumi.String("string"),
	EnckeyBase64:                    pulumi.String("string"),
	EnckeyName:                      pulumi.String("string"),
	Format:                          pulumi.String("string"),
	HardwaresecuritymodulegroupRef:  pulumi.String("string"),
	ImportKeyToHsm:                  pulumi.String("string"),
	CertificateManagementProfileRef: pulumi.String("string"),
	IsFederated:                     pulumi.String("string"),
	CreatedBy:                       pulumi.String("string"),
	KeyParams: avi.SslkeyandcertificateKeyParamArray{
		&avi.SslkeyandcertificateKeyParamArgs{
			Algorithm: pulumi.String("string"),
			EcParams: avi.SslkeyandcertificateKeyParamEcParamArray{
				&avi.SslkeyandcertificateKeyParamEcParamArgs{
					Curve: pulumi.String("string"),
				},
			},
			RsaParams: avi.SslkeyandcertificateKeyParamRsaParamArray{
				&avi.SslkeyandcertificateKeyParamRsaParamArgs{
					Exponent: pulumi.String("string"),
					KeySize:  pulumi.String("string"),
				},
			},
		},
	},
	KeyPassphrase: pulumi.String("string"),
	Markers: avi.SslkeyandcertificateMarkerArray{
		&avi.SslkeyandcertificateMarkerArgs{
			Key: pulumi.String("string"),
			Values: pulumi.StringArray{
				pulumi.String("string"),
			},
		},
	},
	Name: pulumi.String("string"),
	OcspConfigs: avi.SslkeyandcertificateOcspConfigArray{
		&avi.SslkeyandcertificateOcspConfigArgs{
			FailedOcspJobsRetryInterval: pulumi.String("string"),
			MaxTries:                    pulumi.String("string"),
			OcspReqInterval:             pulumi.String("string"),
			OcspRespTimeout:             pulumi.String("string"),
			ResponderUrlLists: pulumi.StringArray{
				pulumi.String("string"),
			},
			UrlAction: pulumi.String("string"),
		},
	},
	OcspErrorStatus: pulumi.String("string"),
	OcspResponderUrlListFromCerts: pulumi.StringArray{
		pulumi.String("string"),
	},
	OcspResponseInfos: avi.SslkeyandcertificateOcspResponseInfoArray{
		&avi.SslkeyandcertificateOcspResponseInfoArgs{
			CertStatus:               pulumi.String("string"),
			OcspRespFromResponderUrl: pulumi.String("string"),
			OcspResponse:             pulumi.String("string"),
			NextUpdate:               pulumi.String("string"),
			RevocationReason:         pulumi.String("string"),
			RevocationTime:           pulumi.String("string"),
			ThisUpdate:               pulumi.String("string"),
		},
	},
	CaCerts: avi.SslkeyandcertificateCaCertArray{
		&avi.SslkeyandcertificateCaCertArgs{
			CaRef: pulumi.String("string"),
			Name:  pulumi.String("string"),
		},
	},
	Status:    pulumi.String("string"),
	TenantRef: pulumi.String("string"),
	Type:      pulumi.String("string"),
	Uuid:      pulumi.String("string"),
})

var sslkeyandcertificateResource = new Sslkeyandcertificate("sslkeyandcertificateResource", SslkeyandcertificateArgs.builder()
    .certificates(SslkeyandcertificateCertificateArgs.builder()
        .certificate("string")
        .certificateSigningRequest("string")
        .chainVerified("string")
        .daysUntilExpire("string")
        .expiryStatus("string")
        .fingerprint("string")
        .issuers(SslkeyandcertificateCertificateIssuerArgs.builder()
            .commonName("string")
            .country("string")
            .distinguishedName("string")
            .emailAddress("string")
            .locality("string")
            .organization("string")
            .organizationUnit("string")
            .state("string")
            .build())
        .keyParams(SslkeyandcertificateCertificateKeyParamArgs.builder()
            .algorithm("string")
            .ecParams(SslkeyandcertificateCertificateKeyParamEcParamArgs.builder()
                .curve("string")
                .build())
            .rsaParams(SslkeyandcertificateCertificateKeyParamRsaParamArgs.builder()
                .exponent("string")
                .keySize("string")
                .build())
            .build())
        .notAfter("string")
        .notBefore("string")
        .publicKey("string")
        .selfSigned("string")
        .serialNumber("string")
        .signature("string")
        .signatureAlgorithm("string")
        .subjectAltNames("string")
        .subjects(SslkeyandcertificateCertificateSubjectArgs.builder()
            .commonName("string")
            .country("string")
            .distinguishedName("string")
            .emailAddress("string")
            .locality("string")
            .organization("string")
            .organizationUnit("string")
            .state("string")
            .build())
        .text("string")
        .version("string")
        .build())
    .key("string")
    .sslkeyandcertificateId("string")
    .certificateBase64("string")
    .configpbAttributes(SslkeyandcertificateConfigpbAttributeArgs.builder()
        .version("string")
        .build())
    .keyBase64("string")
    .dynamicParams(SslkeyandcertificateDynamicParamArgs.builder()
        .name("string")
        .isDynamic("string")
        .isSensitive("string")
        .value("string")
        .build())
    .enableOcspStapling("string")
    .enckeyBase64("string")
    .enckeyName("string")
    .format("string")
    .hardwaresecuritymodulegroupRef("string")
    .importKeyToHsm("string")
    .certificateManagementProfileRef("string")
    .isFederated("string")
    .createdBy("string")
    .keyParams(SslkeyandcertificateKeyParamArgs.builder()
        .algorithm("string")
        .ecParams(SslkeyandcertificateKeyParamEcParamArgs.builder()
            .curve("string")
            .build())
        .rsaParams(SslkeyandcertificateKeyParamRsaParamArgs.builder()
            .exponent("string")
            .keySize("string")
            .build())
        .build())
    .keyPassphrase("string")
    .markers(SslkeyandcertificateMarkerArgs.builder()
        .key("string")
        .values("string")
        .build())
    .name("string")
    .ocspConfigs(SslkeyandcertificateOcspConfigArgs.builder()
        .failedOcspJobsRetryInterval("string")
        .maxTries("string")
        .ocspReqInterval("string")
        .ocspRespTimeout("string")
        .responderUrlLists("string")
        .urlAction("string")
        .build())
    .ocspErrorStatus("string")
    .ocspResponderUrlListFromCerts("string")
    .ocspResponseInfos(SslkeyandcertificateOcspResponseInfoArgs.builder()
        .certStatus("string")
        .ocspRespFromResponderUrl("string")
        .ocspResponse("string")
        .nextUpdate("string")
        .revocationReason("string")
        .revocationTime("string")
        .thisUpdate("string")
        .build())
    .caCerts(SslkeyandcertificateCaCertArgs.builder()
        .caRef("string")
        .name("string")
        .build())
    .status("string")
    .tenantRef("string")
    .type("string")
    .uuid("string")
    .build());

sslkeyandcertificate_resource = avi.Sslkeyandcertificate("sslkeyandcertificateResource",
    certificates=[{
        "certificate": "string",
        "certificate_signing_request": "string",
        "chain_verified": "string",
        "days_until_expire": "string",
        "expiry_status": "string",
        "fingerprint": "string",
        "issuers": [{
            "common_name": "string",
            "country": "string",
            "distinguished_name": "string",
            "email_address": "string",
            "locality": "string",
            "organization": "string",
            "organization_unit": "string",
            "state": "string",
        }],
        "key_params": [{
            "algorithm": "string",
            "ec_params": [{
                "curve": "string",
            }],
            "rsa_params": [{
                "exponent": "string",
                "key_size": "string",
            }],
        }],
        "not_after": "string",
        "not_before": "string",
        "public_key": "string",
        "self_signed": "string",
        "serial_number": "string",
        "signature": "string",
        "signature_algorithm": "string",
        "subject_alt_names": ["string"],
        "subjects": [{
            "common_name": "string",
            "country": "string",
            "distinguished_name": "string",
            "email_address": "string",
            "locality": "string",
            "organization": "string",
            "organization_unit": "string",
            "state": "string",
        }],
        "text": "string",
        "version": "string",
    }],
    key="string",
    sslkeyandcertificate_id="string",
    certificate_base64="string",
    configpb_attributes=[{
        "version": "string",
    }],
    key_base64="string",
    dynamic_params=[{
        "name": "string",
        "is_dynamic": "string",
        "is_sensitive": "string",
        "value": "string",
    }],
    enable_ocsp_stapling="string",
    enckey_base64="string",
    enckey_name="string",
    format="string",
    hardwaresecuritymodulegroup_ref="string",
    import_key_to_hsm="string",
    certificate_management_profile_ref="string",
    is_federated="string",
    created_by="string",
    key_params=[{
        "algorithm": "string",
        "ec_params": [{
            "curve": "string",
        }],
        "rsa_params": [{
            "exponent": "string",
            "key_size": "string",
        }],
    }],
    key_passphrase="string",
    markers=[{
        "key": "string",
        "values": ["string"],
    }],
    name="string",
    ocsp_configs=[{
        "failed_ocsp_jobs_retry_interval": "string",
        "max_tries": "string",
        "ocsp_req_interval": "string",
        "ocsp_resp_timeout": "string",
        "responder_url_lists": ["string"],
        "url_action": "string",
    }],
    ocsp_error_status="string",
    ocsp_responder_url_list_from_certs=["string"],
    ocsp_response_infos=[{
        "cert_status": "string",
        "ocsp_resp_from_responder_url": "string",
        "ocsp_response": "string",
        "next_update": "string",
        "revocation_reason": "string",
        "revocation_time": "string",
        "this_update": "string",
    }],
    ca_certs=[{
        "ca_ref": "string",
        "name": "string",
    }],
    status="string",
    tenant_ref="string",
    type="string",
    uuid="string")

const sslkeyandcertificateResource = new avi.Sslkeyandcertificate("sslkeyandcertificateResource", {
    certificates: [{
        certificate: "string",
        certificateSigningRequest: "string",
        chainVerified: "string",
        daysUntilExpire: "string",
        expiryStatus: "string",
        fingerprint: "string",
        issuers: [{
            commonName: "string",
            country: "string",
            distinguishedName: "string",
            emailAddress: "string",
            locality: "string",
            organization: "string",
            organizationUnit: "string",
            state: "string",
        }],
        keyParams: [{
            algorithm: "string",
            ecParams: [{
                curve: "string",
            }],
            rsaParams: [{
                exponent: "string",
                keySize: "string",
            }],
        }],
        notAfter: "string",
        notBefore: "string",
        publicKey: "string",
        selfSigned: "string",
        serialNumber: "string",
        signature: "string",
        signatureAlgorithm: "string",
        subjectAltNames: ["string"],
        subjects: [{
            commonName: "string",
            country: "string",
            distinguishedName: "string",
            emailAddress: "string",
            locality: "string",
            organization: "string",
            organizationUnit: "string",
            state: "string",
        }],
        text: "string",
        version: "string",
    }],
    key: "string",
    sslkeyandcertificateId: "string",
    certificateBase64: "string",
    configpbAttributes: [{
        version: "string",
    }],
    keyBase64: "string",
    dynamicParams: [{
        name: "string",
        isDynamic: "string",
        isSensitive: "string",
        value: "string",
    }],
    enableOcspStapling: "string",
    enckeyBase64: "string",
    enckeyName: "string",
    format: "string",
    hardwaresecuritymodulegroupRef: "string",
    importKeyToHsm: "string",
    certificateManagementProfileRef: "string",
    isFederated: "string",
    createdBy: "string",
    keyParams: [{
        algorithm: "string",
        ecParams: [{
            curve: "string",
        }],
        rsaParams: [{
            exponent: "string",
            keySize: "string",
        }],
    }],
    keyPassphrase: "string",
    markers: [{
        key: "string",
        values: ["string"],
    }],
    name: "string",
    ocspConfigs: [{
        failedOcspJobsRetryInterval: "string",
        maxTries: "string",
        ocspReqInterval: "string",
        ocspRespTimeout: "string",
        responderUrlLists: ["string"],
        urlAction: "string",
    }],
    ocspErrorStatus: "string",
    ocspResponderUrlListFromCerts: ["string"],
    ocspResponseInfos: [{
        certStatus: "string",
        ocspRespFromResponderUrl: "string",
        ocspResponse: "string",
        nextUpdate: "string",
        revocationReason: "string",
        revocationTime: "string",
        thisUpdate: "string",
    }],
    caCerts: [{
        caRef: "string",
        name: "string",
    }],
    status: "string",
    tenantRef: "string",
    type: "string",
    uuid: "string",
});

type: avi:Sslkeyandcertificate
properties:
    caCerts:
        - caRef: string
          name: string
    certificateBase64: string
    certificateManagementProfileRef: string
    certificates:
        - certificate: string
          certificateSigningRequest: string
          chainVerified: string
          daysUntilExpire: string
          expiryStatus: string
          fingerprint: string
          issuers:
            - commonName: string
              country: string
              distinguishedName: string
              emailAddress: string
              locality: string
              organization: string
              organizationUnit: string
              state: string
          keyParams:
            - algorithm: string
              ecParams:
                - curve: string
              rsaParams:
                - exponent: string
                  keySize: string
          notAfter: string
          notBefore: string
          publicKey: string
          selfSigned: string
          serialNumber: string
          signature: string
          signatureAlgorithm: string
          subjectAltNames:
            - string
          subjects:
            - commonName: string
              country: string
              distinguishedName: string
              emailAddress: string
              locality: string
              organization: string
              organizationUnit: string
              state: string
          text: string
          version: string
    configpbAttributes:
        - version: string
    createdBy: string
    dynamicParams:
        - isDynamic: string
          isSensitive: string
          name: string
          value: string
    enableOcspStapling: string
    enckeyBase64: string
    enckeyName: string
    format: string
    hardwaresecuritymodulegroupRef: string
    importKeyToHsm: string
    isFederated: string
    key: string
    keyBase64: string
    keyParams:
        - algorithm: string
          ecParams:
            - curve: string
          rsaParams:
            - exponent: string
              keySize: string
    keyPassphrase: string
    markers:
        - key: string
          values:
            - string
    name: string
    ocspConfigs:
        - failedOcspJobsRetryInterval: string
          maxTries: string
          ocspReqInterval: string
          ocspRespTimeout: string
          responderUrlLists:
            - string
          urlAction: string
    ocspErrorStatus: string
    ocspResponderUrlListFromCerts:
        - string
    ocspResponseInfos:
        - certStatus: string
          nextUpdate: string
          ocspRespFromResponderUrl: string
          ocspResponse: string
          revocationReason: string
          revocationTime: string
          thisUpdate: string
    sslkeyandcertificateId: string
    status: string
    tenantRef: string
    type: string
    uuid: string

Sslkeyandcertificate Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The Sslkeyandcertificate resource accepts the following input properties:

Certificates List<SslkeyandcertificateCertificate>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaCerts List<SslkeyandcertificateCaCert>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
ConfigpbAttributes List<SslkeyandcertificateConfigpbAttribute>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams List<SslkeyandcertificateDynamicParam>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams List<SslkeyandcertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers List<SslkeyandcertificateMarker>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs List<SslkeyandcertificateOcspConfig>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts List<string>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos List<SslkeyandcertificateOcspResponseInfo>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

Certificates []SslkeyandcertificateCertificateArgs: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaCerts []SslkeyandcertificateCaCertArgs: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
ConfigpbAttributes []SslkeyandcertificateConfigpbAttributeArgs: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams []SslkeyandcertificateDynamicParamArgs: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams []SslkeyandcertificateKeyParamArgs: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers []SslkeyandcertificateMarkerArgs: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs []SslkeyandcertificateOcspConfigArgs: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts []string: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos []SslkeyandcertificateOcspResponseInfoArgs: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

certificates List<SslkeyandcertificateCertificate>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<SslkeyandcertificateCaCert>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes List<SslkeyandcertificateConfigpbAttribute>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<SslkeyandcertificateDynamicParam>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<SslkeyandcertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<SslkeyandcertificateMarker>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<SslkeyandcertificateOcspConfig>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<SslkeyandcertificateOcspResponseInfo>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

certificates SslkeyandcertificateCertificate[]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts SslkeyandcertificateCaCert[]: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes SslkeyandcertificateConfigpbAttribute[]: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams SslkeyandcertificateDynamicParam[]: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams SslkeyandcertificateKeyParam[]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers SslkeyandcertificateMarker[]: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs SslkeyandcertificateOcspConfig[]: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts string[]: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos SslkeyandcertificateOcspResponseInfo[]: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId string
status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

certificates Sequence[SslkeyandcertificateCertificateArgs]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ca_certs Sequence[SslkeyandcertificateCaCertArgs]: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_base64 str: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_management_profile_ref str: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpb_attributes Sequence[SslkeyandcertificateConfigpbAttributeArgs]: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
created_by str: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamic_params Sequence[SslkeyandcertificateDynamicParamArgs]: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enable_ocsp_stapling str: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckey_base64 str: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckey_name str: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format str: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroup_ref str: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
import_key_to_hsm str: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
is_federated str: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key str: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_base64 str: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_params Sequence[SslkeyandcertificateKeyParamArgs]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_passphrase str: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers Sequence[SslkeyandcertificateMarkerArgs]: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocsp_configs Sequence[SslkeyandcertificateOcspConfigArgs]: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_error_status str: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocsp_responder_url_list_from_certs Sequence[str]: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_response_infos Sequence[SslkeyandcertificateOcspResponseInfoArgs]: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificate_id str
status str: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenant_ref str: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type str: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

certificates List<Property Map>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<Property Map>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes List<Property Map>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<Property Map>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<Property Map>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<Property Map>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<Property Map>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<Property Map>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

Outputs

All input properties are implicitly available as output properties. Additionally, the Sslkeyandcertificate resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing Sslkeyandcertificate Resource

Get an existing Sslkeyandcertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SslkeyandcertificateState, opts?: CustomResourceOptions): Sslkeyandcertificate

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
        certificate_base64: Optional[str] = None,
        certificate_management_profile_ref: Optional[str] = None,
        certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
        configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
        created_by: Optional[str] = None,
        dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
        enable_ocsp_stapling: Optional[str] = None,
        enckey_base64: Optional[str] = None,
        enckey_name: Optional[str] = None,
        format: Optional[str] = None,
        hardwaresecuritymodulegroup_ref: Optional[str] = None,
        import_key_to_hsm: Optional[str] = None,
        is_federated: Optional[str] = None,
        key: Optional[str] = None,
        key_base64: Optional[str] = None,
        key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
        key_passphrase: Optional[str] = None,
        markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
        name: Optional[str] = None,
        ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
        ocsp_error_status: Optional[str] = None,
        ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
        ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
        sslkeyandcertificate_id: Optional[str] = None,
        status: Optional[str] = None,
        tenant_ref: Optional[str] = None,
        type: Optional[str] = None,
        uuid: Optional[str] = None) -> Sslkeyandcertificate

func GetSslkeyandcertificate(ctx *Context, name string, id IDInput, state *SslkeyandcertificateState, opts ...ResourceOption) (*Sslkeyandcertificate, error)

public static Sslkeyandcertificate Get(string name, Input<string> id, SslkeyandcertificateState? state, CustomResourceOptions? opts = null)

public static Sslkeyandcertificate get(String name, Output<String> id, SslkeyandcertificateState state, CustomResourceOptions options)

resources:  _:    type: avi:Sslkeyandcertificate    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CaCerts List<SslkeyandcertificateCaCert>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
Certificates List<SslkeyandcertificateCertificate>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ConfigpbAttributes List<SslkeyandcertificateConfigpbAttribute>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams List<SslkeyandcertificateDynamicParam>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams List<SslkeyandcertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers List<SslkeyandcertificateMarker>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs List<SslkeyandcertificateOcspConfig>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts List<string>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos List<SslkeyandcertificateOcspResponseInfo>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

CaCerts []SslkeyandcertificateCaCertArgs: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
Certificates []SslkeyandcertificateCertificateArgs: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ConfigpbAttributes []SslkeyandcertificateConfigpbAttributeArgs: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams []SslkeyandcertificateDynamicParamArgs: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams []SslkeyandcertificateKeyParamArgs: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers []SslkeyandcertificateMarkerArgs: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs []SslkeyandcertificateOcspConfigArgs: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts []string: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos []SslkeyandcertificateOcspResponseInfoArgs: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caCerts List<SslkeyandcertificateCaCert>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates List<SslkeyandcertificateCertificate>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes List<SslkeyandcertificateConfigpbAttribute>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<SslkeyandcertificateDynamicParam>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<SslkeyandcertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<SslkeyandcertificateMarker>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<SslkeyandcertificateOcspConfig>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<SslkeyandcertificateOcspResponseInfo>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caCerts SslkeyandcertificateCaCert[]: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 string: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef string: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates SslkeyandcertificateCertificate[]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes SslkeyandcertificateConfigpbAttribute[]: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy string: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams SslkeyandcertificateDynamicParam[]: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling string: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 string: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName string: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format string: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef string: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm string: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated string: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 string: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams SslkeyandcertificateKeyParam[]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase string: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers SslkeyandcertificateMarker[]: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs SslkeyandcertificateOcspConfig[]: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus string: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts string[]: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos SslkeyandcertificateOcspResponseInfo[]: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId string
status string: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef string: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type string: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

ca_certs Sequence[SslkeyandcertificateCaCertArgs]: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_base64 str: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_management_profile_ref str: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates Sequence[SslkeyandcertificateCertificateArgs]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpb_attributes Sequence[SslkeyandcertificateConfigpbAttributeArgs]: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
created_by str: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamic_params Sequence[SslkeyandcertificateDynamicParamArgs]: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enable_ocsp_stapling str: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckey_base64 str: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckey_name str: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format str: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroup_ref str: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
import_key_to_hsm str: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
is_federated str: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key str: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_base64 str: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_params Sequence[SslkeyandcertificateKeyParamArgs]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_passphrase str: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers Sequence[SslkeyandcertificateMarkerArgs]: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocsp_configs Sequence[SslkeyandcertificateOcspConfigArgs]: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_error_status str: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocsp_responder_url_list_from_certs Sequence[str]: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_response_infos Sequence[SslkeyandcertificateOcspResponseInfoArgs]: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificate_id str
status str: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenant_ref str: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type str: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caCerts List<Property Map>: Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String: States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String: It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates List<Property Map>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes List<Property Map>: Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String: Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<Property Map>: Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String: Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String: Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String: Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String: Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String: It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String: Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String: It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String: States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<Property Map>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String: Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<Property Map>: List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<Property Map>: Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String: Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>: This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<Property Map>: Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String: Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String: It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String: Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

Supporting Types

SslkeyandcertificateCaCert, SslkeyandcertificateCaCertArgs

CaRef string
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

CaRef string
Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caRef String
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caRef string
name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

ca_ref str
name str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

caRef String
name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

SslkeyandcertificateCertificate, SslkeyandcertificateCertificateArgs

Certificate string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateSigningRequest string
ChainVerified string
DaysUntilExpire string
ExpiryStatus string
Fingerprint string
Issuers List<SslkeyandcertificateCertificateIssuer>
KeyParams List<SslkeyandcertificateCertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
NotAfter string
NotBefore string
PublicKey string
SelfSigned string
SerialNumber string
Signature string
SignatureAlgorithm string
SubjectAltNames List<string>
Subjects List<SslkeyandcertificateCertificateSubject>
Text string
Version string

Certificate string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateSigningRequest string
ChainVerified string
DaysUntilExpire string
ExpiryStatus string
Fingerprint string
Issuers []SslkeyandcertificateCertificateIssuer
KeyParams []SslkeyandcertificateCertificateKeyParam: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
NotAfter string
NotBefore string
PublicKey string
SelfSigned string
SerialNumber string
Signature string
SignatureAlgorithm string
SubjectAltNames []string
Subjects []SslkeyandcertificateCertificateSubject
Text string
Version string

certificate String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest String
chainVerified String
daysUntilExpire String
expiryStatus String
fingerprint String
issuers List<SslkeyandcertificateCertificateIssuer>
keyParams List<SslkeyandcertificateCertificateKeyParam>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter String
notBefore String
publicKey String
selfSigned String
serialNumber String
signature String
signatureAlgorithm String
subjectAltNames List<String>
subjects List<SslkeyandcertificateCertificateSubject>
text String
version String

certificate string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest string
chainVerified string
daysUntilExpire string
expiryStatus string
fingerprint string
issuers SslkeyandcertificateCertificateIssuer[]
keyParams SslkeyandcertificateCertificateKeyParam[]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter string
notBefore string
publicKey string
selfSigned string
serialNumber string
signature string
signatureAlgorithm string
subjectAltNames string[]
subjects SslkeyandcertificateCertificateSubject[]
text string
version string

certificate str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_signing_request str
chain_verified str
days_until_expire str
expiry_status str
fingerprint str
issuers Sequence[SslkeyandcertificateCertificateIssuer]
key_params Sequence[SslkeyandcertificateCertificateKeyParam]: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
not_after str
not_before str
public_key str
self_signed str
serial_number str
signature str
signature_algorithm str
subject_alt_names Sequence[str]
subjects Sequence[SslkeyandcertificateCertificateSubject]
text str
version str

certificate String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest String
chainVerified String
daysUntilExpire String
expiryStatus String
fingerprint String
issuers List<Property Map>
keyParams List<Property Map>: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter String
notBefore String
publicKey String
selfSigned String
serialNumber String
signature String
signatureAlgorithm String
subjectAltNames List<String>
subjects List<Property Map>
text String
version String

SslkeyandcertificateCertificateIssuer, SslkeyandcertificateCertificateIssuerArgs

CommonName string
Country string
DistinguishedName string
EmailAddress string
Locality string
Organization string
OrganizationUnit string
State string

CommonName string
Country string
DistinguishedName string
EmailAddress string
Locality string
Organization string
OrganizationUnit string
State string

commonName String
country String
distinguishedName String
emailAddress String
locality String
organization String
organizationUnit String
state String

commonName string
country string
distinguishedName string
emailAddress string
locality string
organization string
organizationUnit string
state string

common_name str
country str
distinguished_name str
email_address str
locality str
organization str
organization_unit str
state str

commonName String
country String
distinguishedName String
emailAddress String
locality String
organization String
organizationUnit String
state String

SslkeyandcertificateCertificateKeyParam, SslkeyandcertificateCertificateKeyParamArgs

Algorithm string
EcParams List<SslkeyandcertificateCertificateKeyParamEcParam>
RsaParams List<SslkeyandcertificateCertificateKeyParamRsaParam>

Algorithm string
EcParams []SslkeyandcertificateCertificateKeyParamEcParam
RsaParams []SslkeyandcertificateCertificateKeyParamRsaParam

algorithm String
ecParams List<SslkeyandcertificateCertificateKeyParamEcParam>
rsaParams List<SslkeyandcertificateCertificateKeyParamRsaParam>

algorithm string
ecParams SslkeyandcertificateCertificateKeyParamEcParam[]
rsaParams SslkeyandcertificateCertificateKeyParamRsaParam[]

algorithm str
ec_params Sequence[SslkeyandcertificateCertificateKeyParamEcParam]
rsa_params Sequence[SslkeyandcertificateCertificateKeyParamRsaParam]

algorithm String
ecParams List<Property Map>
rsaParams List<Property Map>

SslkeyandcertificateCertificateKeyParamEcParam, SslkeyandcertificateCertificateKeyParamEcParamArgs

Curve string

Curve string

curve String

curve string

curve str

curve String

SslkeyandcertificateCertificateKeyParamRsaParam, SslkeyandcertificateCertificateKeyParamRsaParamArgs

Exponent string
KeySize string

Exponent string
KeySize string

exponent String
keySize String

exponent string
keySize string

exponent str
key_size str

exponent String
keySize String

SslkeyandcertificateCertificateSubject, SslkeyandcertificateCertificateSubjectArgs

CommonName string
Country string
DistinguishedName string
EmailAddress string
Locality string
Organization string
OrganizationUnit string
State string

CommonName string
Country string
DistinguishedName string
EmailAddress string
Locality string
Organization string
OrganizationUnit string
State string

commonName String
country String
distinguishedName String
emailAddress String
locality String
organization String
organizationUnit String
state String

commonName string
country string
distinguishedName string
emailAddress string
locality string
organization string
organizationUnit string
state string

common_name str
country str
distinguished_name str
email_address str
locality str
organization str
organization_unit str
state str

commonName String
country String
distinguishedName String
emailAddress String
locality String
organization String
organizationUnit String
state String

SslkeyandcertificateConfigpbAttribute, SslkeyandcertificateConfigpbAttributeArgs

Version string

Version string

version String

version string

version str

version String

SslkeyandcertificateDynamicParam, SslkeyandcertificateDynamicParamArgs

Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
IsDynamic string
IsSensitive string
Value string

Name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
IsDynamic string
IsSensitive string
Value string

name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic String
isSensitive String
value String

name string: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic string
isSensitive string
value string

name str: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
is_dynamic str
is_sensitive str
value str

name String: Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic String
isSensitive String
value String

SslkeyandcertificateKeyParam, SslkeyandcertificateKeyParamArgs

Algorithm string
EcParams List<SslkeyandcertificateKeyParamEcParam>
RsaParams List<SslkeyandcertificateKeyParamRsaParam>

Algorithm string
EcParams []SslkeyandcertificateKeyParamEcParam
RsaParams []SslkeyandcertificateKeyParamRsaParam

algorithm String
ecParams List<SslkeyandcertificateKeyParamEcParam>
rsaParams List<SslkeyandcertificateKeyParamRsaParam>

algorithm string
ecParams SslkeyandcertificateKeyParamEcParam[]
rsaParams SslkeyandcertificateKeyParamRsaParam[]

algorithm str
ec_params Sequence[SslkeyandcertificateKeyParamEcParam]
rsa_params Sequence[SslkeyandcertificateKeyParamRsaParam]

algorithm String
ecParams List<Property Map>
rsaParams List<Property Map>

SslkeyandcertificateKeyParamEcParam, SslkeyandcertificateKeyParamEcParamArgs

Curve string

Curve string

curve String

curve string

curve str

curve String

SslkeyandcertificateKeyParamRsaParam, SslkeyandcertificateKeyParamRsaParamArgs

Exponent string
KeySize string

Exponent string
KeySize string

exponent String
keySize String

exponent string
keySize string

exponent str
key_size str

exponent String
keySize String

SslkeyandcertificateMarker, SslkeyandcertificateMarkerArgs

Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Values List<string>

Key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Values []string

key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values List<String>

key string: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values string[]

key str: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values Sequence[str]

key String: Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values List<String>

SslkeyandcertificateOcspConfig, SslkeyandcertificateOcspConfigArgs

FailedOcspJobsRetryInterval string
MaxTries string
OcspReqInterval string
OcspRespTimeout string
ResponderUrlLists List<string>
UrlAction string

FailedOcspJobsRetryInterval string
MaxTries string
OcspReqInterval string
OcspRespTimeout string
ResponderUrlLists []string
UrlAction string

failedOcspJobsRetryInterval String
maxTries String
ocspReqInterval String
ocspRespTimeout String
responderUrlLists List<String>
urlAction String

failedOcspJobsRetryInterval string
maxTries string
ocspReqInterval string
ocspRespTimeout string
responderUrlLists string[]
urlAction string

failed_ocsp_jobs_retry_interval str
max_tries str
ocsp_req_interval str
ocsp_resp_timeout str
responder_url_lists Sequence[str]
url_action str

failedOcspJobsRetryInterval String
maxTries String
ocspReqInterval String
ocspRespTimeout String
responderUrlLists List<String>
urlAction String

SslkeyandcertificateOcspResponseInfo, SslkeyandcertificateOcspResponseInfoArgs

CertStatus string
OcspRespFromResponderUrl string
OcspResponse string
NextUpdate string
RevocationReason string
RevocationTime string
ThisUpdate string

CertStatus string
OcspRespFromResponderUrl string
OcspResponse string
NextUpdate string
RevocationReason string
RevocationTime string
ThisUpdate string

certStatus String
ocspRespFromResponderUrl String
ocspResponse String
nextUpdate String
revocationReason String
revocationTime String
thisUpdate String

certStatus string
ocspRespFromResponderUrl string
ocspResponse string
nextUpdate string
revocationReason string
revocationTime string
thisUpdate string

cert_status str
ocsp_resp_from_responder_url str
ocsp_response str
next_update str
revocation_reason str
revocation_time str
this_update str

certStatus String
ocspRespFromResponderUrl String
ocspResponse String
nextUpdate String
revocationReason String
revocationTime String
thisUpdate String

Package Details

Repository: avi vmware/terraform-provider-avi
License
Notes: This Pulumi package is based on the avi Terraform Provider.

avi 31.1.1 published on Monday, Apr 14, 2025 by vmware

vmware/terraform-provider-avi

avi.Sslkeyandcertificate

On this page

On this page

<!–

–>

layout: “avi”

page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.

avi.Sslkeyandcertificate

Example Usage

Create Sslkeyandcertificate Resource

Constructor syntax

Parameters

Constructor example

Sslkeyandcertificate Resource Properties

Inputs

Outputs

Look up Existing Sslkeyandcertificate Resource

Supporting Types

SslkeyandcertificateCaCert, SslkeyandcertificateCaCertArgs

SslkeyandcertificateCertificate, SslkeyandcertificateCertificateArgs

SslkeyandcertificateCertificateIssuer, SslkeyandcertificateCertificateIssuerArgs

SslkeyandcertificateCertificateKeyParam, SslkeyandcertificateCertificateKeyParamArgs

SslkeyandcertificateCertificateKeyParamEcParam, SslkeyandcertificateCertificateKeyParamEcParamArgs

SslkeyandcertificateCertificateKeyParamRsaParam, SslkeyandcertificateCertificateKeyParamRsaParamArgs

SslkeyandcertificateCertificateSubject, SslkeyandcertificateCertificateSubjectArgs

SslkeyandcertificateConfigpbAttribute, SslkeyandcertificateConfigpbAttributeArgs

SslkeyandcertificateDynamicParam, SslkeyandcertificateDynamicParamArgs

SslkeyandcertificateKeyParam, SslkeyandcertificateKeyParamArgs

SslkeyandcertificateKeyParamEcParam, SslkeyandcertificateKeyParamEcParamArgs

SslkeyandcertificateKeyParamRsaParam, SslkeyandcertificateKeyParamRsaParamArgs

SslkeyandcertificateMarker, SslkeyandcertificateMarkerArgs

SslkeyandcertificateOcspConfig, SslkeyandcertificateOcspConfigArgs

SslkeyandcertificateOcspResponseInfo, SslkeyandcertificateOcspResponseInfoArgs

Package Details

On this page

On this page