ibm 1.78.0, Apr 30 25

ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud

ibm.getSmPrivateCertificateConfigurationRootCa

Explore with Pulumi AI

ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as ibm from "@pulumi/ibm";

const rootCa = ibm.getSmPrivateCertificateConfigurationRootCa({
    instanceId: ibm_resource_instance.sm_instance.guid,
    region: "us-south",
    name: "configuration-name",
});

import pulumi
import pulumi_ibm as ibm

root_ca = ibm.get_sm_private_certificate_configuration_root_ca(instance_id=ibm_resource_instance["sm_instance"]["guid"],
    region="us-south",
    name="configuration-name")

package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/ibm/ibm"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := ibm.LookupSmPrivateCertificateConfigurationRootCa(ctx, &ibm.LookupSmPrivateCertificateConfigurationRootCaArgs{
			InstanceId: ibm_resource_instance.Sm_instance.Guid,
			Region:     pulumi.StringRef("us-south"),
			Name:       "configuration-name",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Ibm = Pulumi.Ibm;

return await Deployment.RunAsync(() => 
{
    var rootCa = Ibm.GetSmPrivateCertificateConfigurationRootCa.Invoke(new()
    {
        InstanceId = ibm_resource_instance.Sm_instance.Guid,
        Region = "us-south",
        Name = "configuration-name",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.ibm.IbmFunctions;
import com.pulumi.ibm.inputs.GetSmPrivateCertificateConfigurationRootCaArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var rootCa = IbmFunctions.getSmPrivateCertificateConfigurationRootCa(GetSmPrivateCertificateConfigurationRootCaArgs.builder()
            .instanceId(ibm_resource_instance.sm_instance().guid())
            .region("us-south")
            .name("configuration-name")
            .build());

    }
}

variables:
  rootCa:
    fn::invoke:
      function: ibm:getSmPrivateCertificateConfigurationRootCa
      arguments:
        instanceId: ${ibm_resource_instance.sm_instance.guid}
        region: us-south
        name: configuration-name

Using getSmPrivateCertificateConfigurationRootCa

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getSmPrivateCertificateConfigurationRootCa(args: GetSmPrivateCertificateConfigurationRootCaArgs, opts?: InvokeOptions): Promise<GetSmPrivateCertificateConfigurationRootCaResult>
function getSmPrivateCertificateConfigurationRootCaOutput(args: GetSmPrivateCertificateConfigurationRootCaOutputArgs, opts?: InvokeOptions): Output<GetSmPrivateCertificateConfigurationRootCaResult>

def get_sm_private_certificate_configuration_root_ca(endpoint_type: Optional[str] = None,
                                                     id: Optional[str] = None,
                                                     instance_id: Optional[str] = None,
                                                     name: Optional[str] = None,
                                                     region: Optional[str] = None,
                                                     opts: Optional[InvokeOptions] = None) -> GetSmPrivateCertificateConfigurationRootCaResult
def get_sm_private_certificate_configuration_root_ca_output(endpoint_type: Optional[pulumi.Input[str]] = None,
                                                     id: Optional[pulumi.Input[str]] = None,
                                                     instance_id: Optional[pulumi.Input[str]] = None,
                                                     name: Optional[pulumi.Input[str]] = None,
                                                     region: Optional[pulumi.Input[str]] = None,
                                                     opts: Optional[InvokeOptions] = None) -> Output[GetSmPrivateCertificateConfigurationRootCaResult]

func LookupSmPrivateCertificateConfigurationRootCa(ctx *Context, args *LookupSmPrivateCertificateConfigurationRootCaArgs, opts ...InvokeOption) (*LookupSmPrivateCertificateConfigurationRootCaResult, error)
func LookupSmPrivateCertificateConfigurationRootCaOutput(ctx *Context, args *LookupSmPrivateCertificateConfigurationRootCaOutputArgs, opts ...InvokeOption) LookupSmPrivateCertificateConfigurationRootCaResultOutput

> Note: This function is named LookupSmPrivateCertificateConfigurationRootCa in the Go SDK.

public static class GetSmPrivateCertificateConfigurationRootCa 
{
    public static Task<GetSmPrivateCertificateConfigurationRootCaResult> InvokeAsync(GetSmPrivateCertificateConfigurationRootCaArgs args, InvokeOptions? opts = null)
    public static Output<GetSmPrivateCertificateConfigurationRootCaResult> Invoke(GetSmPrivateCertificateConfigurationRootCaInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetSmPrivateCertificateConfigurationRootCaResult> getSmPrivateCertificateConfigurationRootCa(GetSmPrivateCertificateConfigurationRootCaArgs args, InvokeOptions options)
public static Output<GetSmPrivateCertificateConfigurationRootCaResult> getSmPrivateCertificateConfigurationRootCa(GetSmPrivateCertificateConfigurationRootCaArgs args, InvokeOptions options)

fn::invoke:
  function: ibm:index/getSmPrivateCertificateConfigurationRootCa:getSmPrivateCertificateConfigurationRootCa
  arguments:
    # arguments dictionary

The following arguments are supported:

InstanceId string

The GUID of the Secrets Manager instance.

Name string

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

EndpointType string

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

Id string

(String) The ID of a PKCS#11 key to use. If the key does not exist and generation is enabled, this ID is given to the generated key. If the key exists, and generation is disabled, then this ID is used to look up the key. This value or the crypto key label must be specified.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Region string

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

InstanceId string

The GUID of the Secrets Manager instance.

Name string

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

EndpointType string

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

Id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Region string

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

instanceId String

The GUID of the Secrets Manager instance.

name String

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

endpointType String

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

region String

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

instanceId string

The GUID of the Secrets Manager instance.

name string

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

endpointType string

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

region string

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

instance_id str

The GUID of the Secrets Manager instance.

name str

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

endpoint_type str

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

id str

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

region str

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

instanceId String

The GUID of the Secrets Manager instance.

name String

The name of the configuration.

Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /^[A-Za-z0-9][A-Za-z0-9]*(?:_?-?\\.?[A-Za-z0-9]+)*$/.

endpointType String

The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

Constraints: Allowable values are: private, public.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

region String

The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.

getSmPrivateCertificateConfigurationRootCa Result

The following output properties are available:

AltNames List<string>

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

CommonName string

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

ConfigType string

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

Countries List<string>

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

CreatedAt string

(String) The date when a resource was created. The date format follows RFC 3339.

CreatedBy string

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

CrlDisable bool

(Boolean) Disables or enables certificate revocation list (CRL) building.If CRL building is disabled, a signed but zero-length CRL is returned when downloading the CRL. If CRL building is enabled, it will rebuild the CRL.

CrlDistributionPointsEncoded bool

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

CrlExpirySeconds double

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

CryptoKeys List<GetSmPrivateCertificateConfigurationRootCaCryptoKey>

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

Datas List<GetSmPrivateCertificateConfigurationRootCaData>

(List) The configuration data of your Private Certificate. Nested scheme for data:

ExcludeCnFromSans bool

(Boolean) Controls whether the common name is excluded from Subject Alternative Names (SANs).If the common name set to true, it is not included in DNS or Email SANs if they apply. This field can be useful if the common name is a human-readable identifier, instead of a hostname or an email address.

ExpirationDate string

(String) The date a secret is expired. The date format follows RFC 3339.

Format string

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

Id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

InstanceId string

IpSans string

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

IssuingCertificatesUrlsEncoded bool

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

KeyBits double

(Integer) The number of bits to use to generate the private key.Allowable values for RSA keys are: 2048 and 4096. Allowable values for EC keys are: 224, 256, 384, and 521. The default for RSA keys is 2048. The default for EC keys is 256.

KeyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

Localities List<string>

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

MaxPathLength double

(Integer) The maximum path length to encode in the generated certificate. -1 means no limit.If the signing certificate has a maximum path length set, the path length is set to one less than that of the signing certificate. A limit of 0 means a literal path length of zero.

MaxTtlSeconds double

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

Name string

Organizations List<string>

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

OtherSans List<string>

(List) The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the CA certificate.The alternative names must match the values that are specified in the allowed_other_sans field in the associated certificate template. The format is the same as OpenSSL: <oid>:<type>:<value> where the current valid type is UTF8.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

Ous List<string>

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

PermittedDnsDomains List<string>

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

PostalCodes List<string>

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

PrivateKeyFormat string

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

Provinces List<string>

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

Region string

SecretType string

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

SerialNumber string

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

Status string

(String) The status of the certificate authority. The status of a root certificate authority is either configured or expired. For intermediate certificate authorities, possible statuses include signing_required,signed_certificate_required, certificate_template_required, configured, expired or revoked.

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

StreetAddresses List<string>

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

TtlSeconds double

UpdatedAt string

(String) The date when a resource was recently modified. The date format follows RFC 3339.

UriSans string

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

EndpointType string

AltNames []string

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

CommonName string

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

ConfigType string

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

Countries []string

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

CreatedAt string

(String) The date when a resource was created. The date format follows RFC 3339.

CreatedBy string

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

CrlDisable bool

CrlDistributionPointsEncoded bool

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

CrlExpirySeconds float64

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

CryptoKeys []GetSmPrivateCertificateConfigurationRootCaCryptoKey

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

Datas []GetSmPrivateCertificateConfigurationRootCaData

(List) The configuration data of your Private Certificate. Nested scheme for data:

ExcludeCnFromSans bool

ExpirationDate string

(String) The date a secret is expired. The date format follows RFC 3339.

Format string

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

Id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

InstanceId string

IpSans string

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

IssuingCertificatesUrlsEncoded bool

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

KeyBits float64

KeyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

Localities []string

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

MaxPathLength float64

MaxTtlSeconds float64

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

Name string

Organizations []string

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

OtherSans []string

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

Ous []string

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

PermittedDnsDomains []string

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

PostalCodes []string

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

PrivateKeyFormat string

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

Provinces []string

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

Region string

SecretType string

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

SerialNumber string

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

Status string

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

StreetAddresses []string

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

TtlSeconds float64

UpdatedAt string

(String) The date when a resource was recently modified. The date format follows RFC 3339.

UriSans string

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

EndpointType string

altNames List<String>

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

commonName String

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

configType String

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

countries List<String>

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

createdAt String

(String) The date when a resource was created. The date format follows RFC 3339.

createdBy String

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

crlDisable Boolean

crlDistributionPointsEncoded Boolean

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

crlExpirySeconds Double

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

cryptoKeys List<GetSmPrivateCertificateConfigurationRootCaCryptoKey>

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

datas List<GetSmPrivateCertificateConfigurationRootCaData>

(List) The configuration data of your Private Certificate. Nested scheme for data:

excludeCnFromSans Boolean

expirationDate String

(String) The date a secret is expired. The date format follows RFC 3339.

format String

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

instanceId String

ipSans String

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

issuingCertificatesUrlsEncoded Boolean

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

keyBits Double

keyType String

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

localities List<String>

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

maxPathLength Double

maxTtlSeconds Double

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

name String

organizations List<String>

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

otherSans List<String>

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

ous List<String>

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

permittedDnsDomains List<String>

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

postalCodes List<String>

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

privateKeyFormat String

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

provinces List<String>

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

region String

secretType String

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

serialNumber String

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

status String

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

streetAddresses List<String>

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

ttlSeconds Double

updatedAt String

(String) The date when a resource was recently modified. The date format follows RFC 3339.

uriSans String

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

endpointType String

altNames string[]

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

commonName string

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

configType string

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

countries string[]

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

createdAt string

(String) The date when a resource was created. The date format follows RFC 3339.

createdBy string

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

crlDisable boolean

crlDistributionPointsEncoded boolean

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

crlExpirySeconds number

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

cryptoKeys GetSmPrivateCertificateConfigurationRootCaCryptoKey[]

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

datas GetSmPrivateCertificateConfigurationRootCaData[]

(List) The configuration data of your Private Certificate. Nested scheme for data:

excludeCnFromSans boolean

expirationDate string

(String) The date a secret is expired. The date format follows RFC 3339.

format string

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

instanceId string

ipSans string

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

issuingCertificatesUrlsEncoded boolean

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

keyBits number

keyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

localities string[]

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

maxPathLength number

maxTtlSeconds number

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

name string

organizations string[]

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

otherSans string[]

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

ous string[]

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

permittedDnsDomains string[]

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

postalCodes string[]

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

privateKeyFormat string

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

provinces string[]

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

region string

secretType string

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

serialNumber string

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

status string

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

streetAddresses string[]

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

ttlSeconds number

updatedAt string

(String) The date when a resource was recently modified. The date format follows RFC 3339.

uriSans string

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

endpointType string

alt_names Sequence[str]

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

common_name str

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

config_type str

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

countries Sequence[str]

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

created_at str

(String) The date when a resource was created. The date format follows RFC 3339.

created_by str

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

crl_disable bool

crl_distribution_points_encoded bool

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

crl_expiry_seconds float

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

crypto_keys Sequence[GetSmPrivateCertificateConfigurationRootCaCryptoKey]

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

datas Sequence[GetSmPrivateCertificateConfigurationRootCaData]

(List) The configuration data of your Private Certificate. Nested scheme for data:

exclude_cn_from_sans bool

expiration_date str

(String) The date a secret is expired. The date format follows RFC 3339.

format str

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

id str

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

instance_id str

ip_sans str

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

issuing_certificates_urls_encoded bool

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

key_bits float

key_type str

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

localities Sequence[str]

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

max_path_length float

max_ttl_seconds float

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

name str

organizations Sequence[str]

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

other_sans Sequence[str]

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

ous Sequence[str]

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

permitted_dns_domains Sequence[str]

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

postal_codes Sequence[str]

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

private_key_format str

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

provinces Sequence[str]

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

region str

secret_type str

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

serial_number str

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

status str

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

street_addresses Sequence[str]

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

ttl_seconds float

updated_at str

(String) The date when a resource was recently modified. The date format follows RFC 3339.

uri_sans str

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

endpoint_type str

altNames List<String>

(List) With the Subject Alternative Name field, you can specify additional host names to be protected by a single SSL certificate.

Constraints: The list items must match regular expression /^(.*?)$/. The maximum length is 99 items. The minimum length is 0 items.

commonName String

(String) The Common Name (AKA CN) represents the server name that is protected by the SSL certificate.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters. The value must match regular expression /(.*?)/.

configType String

(String) Th configuration type.

Constraints: Allowable values are: public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, iam_credentials_configuration, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template.

countries List<String>

(List) The Country (C) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

createdAt String

(String) The date when a resource was created. The date format follows RFC 3339.

createdBy String

(String) The unique identifier that is associated with the entity that created the secret.

Constraints: The maximum length is 128 characters. The minimum length is 4 characters.

crlDisable Boolean

crlDistributionPointsEncoded Boolean

(Boolean) Determines whether to encode the certificate revocation list (CRL) distribution points in the certificates that are issued by this certificate authority.

crlExpirySeconds Number

(Integer) The time until the certificate revocation list (CRL) expires, in seconds.

cryptoKeys List<Property Map>

(List) The data that is associated with a cryptographic key. Nested scheme for crypto_key:

datas List<Property Map>

(List) The configuration data of your Private Certificate. Nested scheme for data:

excludeCnFromSans Boolean

expirationDate String

(String) The date a secret is expired. The date format follows RFC 3339.

format String

(String) The format of the returned data.

Constraints: Allowable values are: pem, pem_bundle.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

instanceId String

ipSans String

(String) The IP Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

issuingCertificatesUrlsEncoded Boolean

(Boolean) Determines whether to encode the URL of the issuing certificate in the certificates that are issued by this certificate authority.

keyBits Number

keyType String

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

localities List<String>

(List) The Locality (L) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

maxPathLength Number

maxTtlSeconds Number

(Integer) The maximum time-to-live (TTL) for certificates that are created by this CA in seconds.

name String

organizations List<String>

(List) The Organization (O) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

otherSans List<String>

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

ous List<String>

(List) The Organizational Unit (OU) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

permittedDnsDomains List<String>

(List) The allowed DNS domains or subdomains for the certificates that are to be signed and issued by this CA certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 100 items. The minimum length is 0 items.

postalCodes List<String>

(List) The postal code values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

privateKeyFormat String

(String) The format of the generated private key.

Constraints: The default value is der. Allowable values are: der, pkcs8.

provinces List<String>

(List) The Province (ST) values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

region String

secretType String

(String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.

serialNumber String

(String) The serial number to assign to the generated certificate. To assign a random serial number, you can omit this field.

Constraints: The maximum length is 64 characters. The minimum length is 32 characters. The value must match regular expression /[^a-fA-F0-9]/.

status String

Constraints: Allowable values are: signing_required, signed_certificate_required, certificate_template_required, configured, expired, revoked.

streetAddresses List<String>

(List) The street address values to define in the subject field of the resulting certificate.

Constraints: The list items must match regular expression /(.*?)/. The maximum length is 10 items. The minimum length is 0 items.

ttlSeconds Number

updatedAt String

(String) The date when a resource was recently modified. The date format follows RFC 3339.

uriSans String

(String) The URI Subject Alternative Names to define for the CA certificate, in a comma-delimited list.

Constraints: The maximum length is 2048 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.

endpointType String

Supporting Types

GetSmPrivateCertificateConfigurationRootCaCryptoKey

AllowGenerateKey bool

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

Id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Label string

(String) The label of the key to use. If the key does not exist and generation is enabled, this field is the label that is given to the generated key. If the key exists, and generation is disabled, then this label is used to look up the key. This value or the crypto key ID must be specified.

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

Providers List<GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider>

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

AllowGenerateKey bool

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

Id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Label string

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

Providers []GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

allowGenerateKey Boolean

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

label String

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

providers List<GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider>

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

allowGenerateKey boolean

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

id string

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

label string

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

providers GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider[]

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

allow_generate_key bool

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

id str

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

label str

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

providers Sequence[GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider]

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

allowGenerateKey Boolean

(Boolean) The indication of whether a new key is generated by the crypto provider if the given key name cannot be found. Default is false.

id String

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

label String

Constraints: The maximum length is 255 characters. The minimum length is 1 characters. The value must match regular expression /^[A-Za-z0-9._ /-]+$/.

providers List<Property Map>

(List) The data that is associated with a cryptographic provider. Nested scheme for provider:

GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider

InstanceCrn string

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

PinIamCredentialsSecretId string

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

PrivateKeystoreId string

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Type string

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

InstanceCrn string

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

PinIamCredentialsSecretId string

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

PrivateKeystoreId string

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

Type string

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

instanceCrn String

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

pinIamCredentialsSecretId String

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

privateKeystoreId String

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

type String

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

instanceCrn string

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

pinIamCredentialsSecretId string

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

privateKeystoreId string

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

type string

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

instance_crn str

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

pin_iam_credentials_secret_id str

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

private_keystore_id str

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

type str

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

instanceCrn String

(String) The HPCS instance CRN.

Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression ^crn:v0-9*+,;=@/]|%[0-9A-Z]{2})*){8}$.

pinIamCredentialsSecretId String

(String) The secret Id of iam credentials with api key to access HPCS instance.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

privateKeystoreId String

(String) The HPCS private key store space id.

Constraints: Value length should be 36. The value must match regular expression /[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/.

type String

(String) The type of cryptographic provider.

Constraints: Allowable values are: hyper_protect_crypto_services.

GetSmPrivateCertificateConfigurationRootCaData

CaChains List<string>

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

Certificate string

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

Csr string

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

Expiration double

(Integer) The certificate expiration time.

IssuingCa string

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

PrivateKey string

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

PrivateKeyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

CaChains []string

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

Certificate string

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

Csr string

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

Expiration float64

(Integer) The certificate expiration time.

IssuingCa string

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

PrivateKey string

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

PrivateKeyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

caChains List<String>

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

certificate String

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

csr String

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

expiration Double

(Integer) The certificate expiration time.

issuingCa String

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKey String

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKeyType String

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

caChains string[]

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

certificate string

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

csr string

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

expiration number

(Integer) The certificate expiration time.

issuingCa string

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKey string

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKeyType string

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

ca_chains Sequence[str]

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

certificate str

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

csr str

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

expiration float

(Integer) The certificate expiration time.

issuing_ca str

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

private_key str

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

private_key_type str

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

caChains List<String>

(List) The chain of certificate authorities that are associated with the certificate.

Constraints: The list items must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/. The maximum length is 16 items. The minimum length is 1 item.

certificate String

(String) The PEM-encoded contents of your certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

csr String

(String) The certificate signing request.

Constraints: The maximum length is 4096 characters. The minimum length is 2 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

expiration Number

(Integer) The certificate expiration time.

issuingCa String

(String) The PEM-encoded certificate of the certificate authority that signed and issued this certificate.

Constraints: The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKey String

(String) (Optional) The PEM-encoded private key to associate with the certificate.

Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.

privateKeyType String

(String) The type of private key to generate.

Constraints: Allowable values are: rsa, ec.

Package Details

Repository: ibm ibm-cloud/terraform-provider-ibm
License
Notes: This Pulumi package is based on the ibm Terraform Provider.

ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud

ibm-cloud/terraform-provider-ibm

ibm.getSmPrivateCertificateConfigurationRootCa

On this page

On this page

Example Usage

Using getSmPrivateCertificateConfigurationRootCa

getSmPrivateCertificateConfigurationRootCa Result

Supporting Types

GetSmPrivateCertificateConfigurationRootCaCryptoKey

GetSmPrivateCertificateConfigurationRootCaCryptoKeyProvider

GetSmPrivateCertificateConfigurationRootCaData

Package Details

On this page

On this page