Oracle Cloud Infrastructure v1.11.0, Sep 27 23

Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi

oci.CertificatesManagement.CertificateAuthority

Explore with Pulumi AI

Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi

Create CertificateAuthority Resource

new CertificateAuthority(name: string, args: CertificateAuthorityArgs, opts?: CustomResourceOptions);

@overload
def CertificateAuthority(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
                         certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
                         certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
                         compartment_id: Optional[str] = None,
                         defined_tags: Optional[Mapping[str, Any]] = None,
                         description: Optional[str] = None,
                         freeform_tags: Optional[Mapping[str, Any]] = None,
                         kms_key_id: Optional[str] = None,
                         name: Optional[str] = None)
@overload
def CertificateAuthority(resource_name: str,
                         args: CertificateAuthorityArgs,
                         opts: Optional[ResourceOptions] = None)

func NewCertificateAuthority(ctx *Context, name string, args CertificateAuthorityArgs, opts ...ResourceOption) (*CertificateAuthority, error)

public CertificateAuthority(string name, CertificateAuthorityArgs args, CustomResourceOptions? opts = null)

public CertificateAuthority(String name, CertificateAuthorityArgs args)
public CertificateAuthority(String name, CertificateAuthorityArgs args, CustomResourceOptions options)

type: oci:CertificatesManagement:CertificateAuthority
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CertificateAuthorityArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args CertificateAuthorityArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args CertificateAuthorityArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CertificateAuthorityArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args CertificateAuthorityArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

CertificateAuthority Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The CertificateAuthority resource accepts the following input properties:

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

DefinedTags Dictionary<string, object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags Dictionary<string, object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

Name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

DefinedTags map[string]interface{}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags map[string]interface{}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

Name string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

definedTags Map<String,Object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<String,Object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId string

(Updatable) The compartment in which you want to create the CA.

kmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules CertificateAuthorityCertificateAuthorityRule[]

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

definedTags {[key: string]: any}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description string

(Updatable) A brief description of the CA.

freeformTags {[key: string]: any}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

compartment_id str

(Updatable) The compartment in which you want to create the CA.

kms_key_id str

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

(Updatable) A list of rules that control how the CA is used and managed.

certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

defined_tags Mapping[str, Any]

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description str

(Updatable) A brief description of the CA.

freeform_tags Mapping[str, Any]

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name str

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

certificateAuthorityConfig Property Map

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules List<Property Map>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails Property Map

(Updatable) The details of the certificate revocation list (CRL).

definedTags Map<Any>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<Any>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

Outputs

All input properties are implicitly available as output properties. Additionally, the CertificateAuthority resource produces the following output properties:

ConfigType string: (Updatable) The origin of the CA.
CurrentVersions List<CertificateAuthorityCurrentVersion>: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
Id string: The provider-assigned unique ID for this managed resource.
IssuerCertificateAuthorityId string: The OCID of the private CA.
LifecycleDetails string: Additional information about the current CA lifecycle state.
SigningAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
State string: The current lifecycle state of the certificate authority.
Subjects List<CertificateAuthoritySubject>: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
TimeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

ConfigType string: (Updatable) The origin of the CA.
CurrentVersions []CertificateAuthorityCurrentVersion: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
Id string: The provider-assigned unique ID for this managed resource.
IssuerCertificateAuthorityId string: The OCID of the private CA.
LifecycleDetails string: Additional information about the current CA lifecycle state.
SigningAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
State string: The current lifecycle state of the certificate authority.
Subjects []CertificateAuthoritySubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
TimeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType String: (Updatable) The origin of the CA.
currentVersions List<CertificateAuthorityCurrentVersion>: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
id String: The provider-assigned unique ID for this managed resource.
issuerCertificateAuthorityId String: The OCID of the private CA.
lifecycleDetails String: Additional information about the current CA lifecycle state.
signingAlgorithm String: The algorithm used to sign public key certificates that the CA issues.
state String: The current lifecycle state of the certificate authority.
subjects List<CertificateAuthoritySubject>: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated String: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion String: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType string: (Updatable) The origin of the CA.
currentVersions CertificateAuthorityCurrentVersion[]: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
id string: The provider-assigned unique ID for this managed resource.
issuerCertificateAuthorityId string: The OCID of the private CA.
lifecycleDetails string: Additional information about the current CA lifecycle state.
signingAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
state string: The current lifecycle state of the certificate authority.
subjects CertificateAuthoritySubject[]: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

config_type str: (Updatable) The origin of the CA.
current_versions CertificateAuthorityCurrentVersion]: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
id str: The provider-assigned unique ID for this managed resource.
issuer_certificate_authority_id str: The OCID of the private CA.
lifecycle_details str: Additional information about the current CA lifecycle state.
signing_algorithm str: The algorithm used to sign public key certificates that the CA issues.
state str: The current lifecycle state of the certificate authority.
subjects CertificateAuthoritySubject]: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
time_created str: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_deletion str: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType String: (Updatable) The origin of the CA.
currentVersions List<Property Map>: The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
id String: The provider-assigned unique ID for this managed resource.
issuerCertificateAuthorityId String: The OCID of the private CA.
lifecycleDetails String: Additional information about the current CA lifecycle state.
signingAlgorithm String: The algorithm used to sign public key certificates that the CA issues.
state String: The current lifecycle state of the certificate authority.
subjects List<Property Map>: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated String: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion String: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Look up Existing CertificateAuthority Resource

Get an existing CertificateAuthority resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: CertificateAuthorityState, opts?: CustomResourceOptions): CertificateAuthority

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
        certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
        certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
        compartment_id: Optional[str] = None,
        config_type: Optional[str] = None,
        current_versions: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCurrentVersionArgs]] = None,
        defined_tags: Optional[Mapping[str, Any]] = None,
        description: Optional[str] = None,
        freeform_tags: Optional[Mapping[str, Any]] = None,
        issuer_certificate_authority_id: Optional[str] = None,
        kms_key_id: Optional[str] = None,
        lifecycle_details: Optional[str] = None,
        name: Optional[str] = None,
        signing_algorithm: Optional[str] = None,
        state: Optional[str] = None,
        subjects: Optional[Sequence[_certificatesmanagement.CertificateAuthoritySubjectArgs]] = None,
        time_created: Optional[str] = None,
        time_of_deletion: Optional[str] = None) -> CertificateAuthority

func GetCertificateAuthority(ctx *Context, name string, id IDInput, state *CertificateAuthorityState, opts ...ResourceOption) (*CertificateAuthority, error)

public static CertificateAuthority Get(string name, Input<string> id, CertificateAuthorityState? state, CustomResourceOptions? opts = null)

public static CertificateAuthority get(String name, Output<String> id, CertificateAuthorityState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions List<CertificateAuthorityCurrentVersion>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

DefinedTags Dictionary<string, object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags Dictionary<string, object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

IssuerCertificateAuthorityId string

The OCID of the private CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

Name string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects List<CertificateAuthoritySubject>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions []CertificateAuthorityCurrentVersionArgs

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

DefinedTags map[string]interface{}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags map[string]interface{}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

IssuerCertificateAuthorityId string

The OCID of the private CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

Name string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects []CertificateAuthoritySubjectArgs

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

configType String

(Updatable) The origin of the CA.

currentVersions List<CertificateAuthorityCurrentVersion>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags Map<String,Object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<String,Object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId String

The OCID of the private CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

name String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<CertificateAuthoritySubject>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules CertificateAuthorityCertificateAuthorityRule[]

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

(Updatable) The details of the certificate revocation list (CRL).

compartmentId string

(Updatable) The compartment in which you want to create the CA.

configType string

(Updatable) The origin of the CA.

currentVersions CertificateAuthorityCurrentVersion[]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags {[key: string]: any}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description string

(Updatable) A brief description of the CA.

freeformTags {[key: string]: any}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId string

The OCID of the private CA.

kmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails string

Additional information about the current CA lifecycle state.

name string

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

signingAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

state string

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubject[]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

(Updatable) A list of rules that control how the CA is used and managed.

certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

compartment_id str

(Updatable) The compartment in which you want to create the CA.

config_type str

(Updatable) The origin of the CA.

current_versions CertificateAuthorityCurrentVersionArgs]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

defined_tags Mapping[str, Any]

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description str

(Updatable) A brief description of the CA.

freeform_tags Mapping[str, Any]

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuer_certificate_authority_id str

The OCID of the private CA.

kms_key_id str

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycle_details str

Additional information about the current CA lifecycle state.

name str

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

signing_algorithm str

The algorithm used to sign public key certificates that the CA issues.

state str

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubjectArgs]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

time_created str

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_deletion str

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig Property Map

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules List<Property Map>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails Property Map

(Updatable) The details of the certificate revocation list (CRL).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

configType String

(Updatable) The origin of the CA.

currentVersions List<Property Map>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags Map<Any>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<Any>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId String

The OCID of the private CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

name String

** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<Property Map>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Supporting Types

CertificateAuthorityCertificateAuthorityConfig, CertificateAuthorityCertificateAuthorityConfigArgs

ConfigType string: (Updatable) The origin of the CA.
Subject CertificateAuthorityCertificateAuthorityConfigSubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
IssuerCertificateAuthorityId string: The OCID of the private CA.
SigningAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
Validity CertificateAuthorityCertificateAuthorityConfigValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

ConfigType string: (Updatable) The origin of the CA.
Subject CertificateAuthorityCertificateAuthorityConfigSubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
IssuerCertificateAuthorityId string: The OCID of the private CA.
SigningAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
Validity CertificateAuthorityCertificateAuthorityConfigValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType String: (Updatable) The origin of the CA.
subject CertificateAuthorityCertificateAuthorityConfigSubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
issuerCertificateAuthorityId String: The OCID of the private CA.
signingAlgorithm String: The algorithm used to sign public key certificates that the CA issues.
validity CertificateAuthorityCertificateAuthorityConfigValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName String: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType string: (Updatable) The origin of the CA.
subject CertificateAuthorityCertificateAuthorityConfigSubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
issuerCertificateAuthorityId string: The OCID of the private CA.
signingAlgorithm string: The algorithm used to sign public key certificates that the CA issues.
validity CertificateAuthorityCertificateAuthorityConfigValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

config_type str: (Updatable) The origin of the CA.
subject CertificateAuthorityCertificateAuthorityConfigSubject: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
issuer_certificate_authority_id str: The OCID of the private CA.
signing_algorithm str: The algorithm used to sign public key certificates that the CA issues.
validity CertificateAuthorityCertificateAuthorityConfigValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
version_name str: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType String: (Updatable) The origin of the CA.
subject Property Map: The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
issuerCertificateAuthorityId String: The OCID of the private CA.
signingAlgorithm String: The algorithm used to sign public key certificates that the CA issues.
validity Property Map: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName String: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

CertificateAuthorityCertificateAuthorityConfigSubject, CertificateAuthorityCertificateAuthorityConfigSubjectArgs

CommonName string: Common name or fully-qualified domain name (RDN CN).
Country string: Country name (RDN C).
DistinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
DomainComponent string: Domain component (RDN DC).
GenerationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName string: Personal given name (RDN G or GN).
Initials string: Personal initials.
LocalityName string: Locality (RDN L).
Organization string: Organization (RDN O).
OrganizationalUnit string: Organizational unit (RDN OU).
Pseudonym string: Subject pseudonym.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName string: State or province name (RDN ST or S).
Street string: Street address (RDN STREET).
Surname string: Personal surname (RDN SN).
Title string: Title (RDN T or TITLE).
UserId string: User ID (RDN UID).

CommonName string: Common name or fully-qualified domain name (RDN CN).
Country string: Country name (RDN C).
DistinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
DomainComponent string: Domain component (RDN DC).
GenerationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName string: Personal given name (RDN G or GN).
Initials string: Personal initials.
LocalityName string: Locality (RDN L).
Organization string: Organization (RDN O).
OrganizationalUnit string: Organizational unit (RDN OU).
Pseudonym string: Subject pseudonym.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName string: State or province name (RDN ST or S).
Street string: Street address (RDN STREET).
Surname string: Personal surname (RDN SN).
Title string: Title (RDN T or TITLE).
UserId string: User ID (RDN UID).

commonName String: Common name or fully-qualified domain name (RDN CN).
country String: Country name (RDN C).
distinguishedNameQualifier String: Distinguished name qualifier(RDN DNQ).
domainComponent String: Domain component (RDN DC).
generationQualifier String: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName String: Personal given name (RDN G or GN).
initials String: Personal initials.
localityName String: Locality (RDN L).
organization String: Organization (RDN O).
organizationalUnit String: Organizational unit (RDN OU).
pseudonym String: Subject pseudonym.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName String: State or province name (RDN ST or S).
street String: Street address (RDN STREET).
surname String: Personal surname (RDN SN).
title String: Title (RDN T or TITLE).
userId String: User ID (RDN UID).

commonName string: Common name or fully-qualified domain name (RDN CN).
country string: Country name (RDN C).
distinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
domainComponent string: Domain component (RDN DC).
generationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName string: Personal given name (RDN G or GN).
initials string: Personal initials.
localityName string: Locality (RDN L).
organization string: Organization (RDN O).
organizationalUnit string: Organizational unit (RDN OU).
pseudonym string: Subject pseudonym.
serialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName string: State or province name (RDN ST or S).
street string: Street address (RDN STREET).
surname string: Personal surname (RDN SN).
title string: Title (RDN T or TITLE).
userId string: User ID (RDN UID).

common_name str: Common name or fully-qualified domain name (RDN CN).
country str: Country name (RDN C).
distinguished_name_qualifier str: Distinguished name qualifier(RDN DNQ).
domain_component str: Domain component (RDN DC).
generation_qualifier str: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
given_name str: Personal given name (RDN G or GN).
initials str: Personal initials.
locality_name str: Locality (RDN L).
organization str: Organization (RDN O).
organizational_unit str: Organizational unit (RDN OU).
pseudonym str: Subject pseudonym.
serial_number str: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
state_or_province_name str: State or province name (RDN ST or S).
street str: Street address (RDN STREET).
surname str: Personal surname (RDN SN).
title str: Title (RDN T or TITLE).
user_id str: User ID (RDN UID).

commonName String: Common name or fully-qualified domain name (RDN CN).
country String: Country name (RDN C).
distinguishedNameQualifier String: Distinguished name qualifier(RDN DNQ).
domainComponent String: Domain component (RDN DC).
generationQualifier String: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName String: Personal given name (RDN G or GN).
initials String: Personal initials.
localityName String: Locality (RDN L).
organization String: Organization (RDN O).
organizationalUnit String: Organizational unit (RDN OU).
pseudonym String: Subject pseudonym.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName String: State or province name (RDN ST or S).
street String: Street address (RDN STREET).
surname String: Personal surname (RDN SN).
title String: Title (RDN T or TITLE).
userId String: User ID (RDN UID).

CertificateAuthorityCertificateAuthorityConfigValidity, CertificateAuthorityCertificateAuthorityConfigValidityArgs

TimeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore String: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_after str: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_before str: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore String: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityCertificateAuthorityRule, CertificateAuthorityCertificateAuthorityRuleArgs

RuleType string: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
CertificateAuthorityMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
LeafCertificateMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

RuleType string: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
CertificateAuthorityMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
LeafCertificateMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType String: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
certificateAuthorityMaxValidityDuration String: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
leafCertificateMaxValidityDuration String: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType string: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
certificateAuthorityMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
leafCertificateMaxValidityDuration string: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

rule_type str: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
certificate_authority_max_validity_duration str: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
leaf_certificate_max_validity_duration str: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType String: (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
certificateAuthorityMaxValidityDuration String: (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
leafCertificateMaxValidityDuration String: (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

CertificateAuthorityCertificateRevocationListDetails, CertificateAuthorityCertificateRevocationListDetailsArgs

ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
CustomFormattedUrls List<string>: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
CustomFormattedUrls []string: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls List<String>: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls string[]: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

object_storage_config CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
custom_formatted_urls Sequence[str]: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig Property Map: (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls List<String>: (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig, CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfigArgs

ObjectStorageBucketName string: (Updatable) The name of the bucket where the CRL is stored.
ObjectStorageObjectNameFormat string: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
ObjectStorageNamespace string: (Updatable) The tenancy of the bucket where the CRL is stored.

ObjectStorageBucketName string: (Updatable) The name of the bucket where the CRL is stored.
ObjectStorageObjectNameFormat string: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
ObjectStorageNamespace string: (Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName String: (Updatable) The name of the bucket where the CRL is stored.
objectStorageObjectNameFormat String: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageNamespace String: (Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName string: (Updatable) The name of the bucket where the CRL is stored.
objectStorageObjectNameFormat string: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageNamespace string: (Updatable) The tenancy of the bucket where the CRL is stored.

object_storage_bucket_name str: (Updatable) The name of the bucket where the CRL is stored.
object_storage_object_name_format str: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
object_storage_namespace str: (Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName String: (Updatable) The name of the bucket where the CRL is stored.
objectStorageObjectNameFormat String: (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageNamespace String: (Updatable) The tenancy of the bucket where the CRL is stored.

CertificateAuthorityCurrentVersion, CertificateAuthorityCurrentVersionArgs

CertificateAuthorityId string: The OCID of the CA.
IssuerCaVersionNumber string: The version number of the issuing CA.
RevocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>: The current revocation status of the entity.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
Stages List<string>: A list of rotation states for this CA version.
TimeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
Validities List<CertificateAuthorityCurrentVersionValidity>: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
VersionNumber string: The version number of the CA.

CertificateAuthorityId string: The OCID of the CA.
IssuerCaVersionNumber string: The version number of the issuing CA.
RevocationStatuses []CertificateAuthorityCurrentVersionRevocationStatus: The current revocation status of the entity.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
Stages []string: A list of rotation states for this CA version.
TimeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
Validities []CertificateAuthorityCurrentVersionValidity: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
VersionNumber string: The version number of the CA.

certificateAuthorityId String: The OCID of the CA.
issuerCaVersionNumber String: The version number of the issuing CA.
revocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>: The current revocation status of the entity.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages List<String>: A list of rotation states for this CA version.
timeCreated String: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion String: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities List<CertificateAuthorityCurrentVersionValidity>: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName String: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
versionNumber String: The version number of the CA.

certificateAuthorityId string: The OCID of the CA.
issuerCaVersionNumber string: The version number of the issuing CA.
revocationStatuses CertificateAuthorityCurrentVersionRevocationStatus[]: The current revocation status of the entity.
serialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages string[]: A list of rotation states for this CA version.
timeCreated string: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion string: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities CertificateAuthorityCurrentVersionValidity[]: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName string: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
versionNumber string: The version number of the CA.

certificate_authority_id str: The OCID of the CA.
issuer_ca_version_number str: The version number of the issuing CA.
revocation_statuses CertificateAuthorityCurrentVersionRevocationStatus]: The current revocation status of the entity.
serial_number str: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages Sequence[str]: A list of rotation states for this CA version.
time_created str: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_deletion str: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities CertificateAuthorityCurrentVersionValidity]: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
version_name str: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
version_number str: The version number of the CA.

certificateAuthorityId String: The OCID of the CA.
issuerCaVersionNumber String: The version number of the issuing CA.
revocationStatuses List<Property Map>: The current revocation status of the entity.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages List<String>: A list of rotation states for this CA version.
timeCreated String: A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion String: An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities List<Property Map>: (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName String: (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
versionNumber String: The version number of the CA.

CertificateAuthorityCurrentVersionRevocationStatus, CertificateAuthorityCurrentVersionRevocationStatusArgs

RevocationReason string: The reason the certificate or certificate authority (CA) was revoked.
TimeOfRevocation string: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

RevocationReason string: The reason the certificate or certificate authority (CA) was revoked.
TimeOfRevocation string: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason String: The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation String: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason string: The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation string: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocation_reason str: The reason the certificate or certificate authority (CA) was revoked.
time_of_revocation str: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason String: The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation String: The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityCurrentVersionValidity, CertificateAuthorityCurrentVersionValidityArgs

TimeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore String: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter string: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore string: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_after str: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_before str: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String: (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore String: (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthoritySubject, CertificateAuthoritySubjectArgs

CommonName string: Common name or fully-qualified domain name (RDN CN).
Country string: Country name (RDN C).
DistinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
DomainComponent string: Domain component (RDN DC).
GenerationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName string: Personal given name (RDN G or GN).
Initials string: Personal initials.
LocalityName string: Locality (RDN L).
Organization string: Organization (RDN O).
OrganizationalUnit string: Organizational unit (RDN OU).
Pseudonym string: Subject pseudonym.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName string: State or province name (RDN ST or S).
Street string: Street address (RDN STREET).
Surname string: Personal surname (RDN SN).
Title string: Title (RDN T or TITLE).
UserId string: User ID (RDN UID).

CommonName string: Common name or fully-qualified domain name (RDN CN).
Country string: Country name (RDN C).
DistinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
DomainComponent string: Domain component (RDN DC).
GenerationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName string: Personal given name (RDN G or GN).
Initials string: Personal initials.
LocalityName string: Locality (RDN L).
Organization string: Organization (RDN O).
OrganizationalUnit string: Organizational unit (RDN OU).
Pseudonym string: Subject pseudonym.
SerialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName string: State or province name (RDN ST or S).
Street string: Street address (RDN STREET).
Surname string: Personal surname (RDN SN).
Title string: Title (RDN T or TITLE).
UserId string: User ID (RDN UID).

commonName String: Common name or fully-qualified domain name (RDN CN).
country String: Country name (RDN C).
distinguishedNameQualifier String: Distinguished name qualifier(RDN DNQ).
domainComponent String: Domain component (RDN DC).
generationQualifier String: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName String: Personal given name (RDN G or GN).
initials String: Personal initials.
localityName String: Locality (RDN L).
organization String: Organization (RDN O).
organizationalUnit String: Organizational unit (RDN OU).
pseudonym String: Subject pseudonym.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName String: State or province name (RDN ST or S).
street String: Street address (RDN STREET).
surname String: Personal surname (RDN SN).
title String: Title (RDN T or TITLE).
userId String: User ID (RDN UID).

commonName string: Common name or fully-qualified domain name (RDN CN).
country string: Country name (RDN C).
distinguishedNameQualifier string: Distinguished name qualifier(RDN DNQ).
domainComponent string: Domain component (RDN DC).
generationQualifier string: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName string: Personal given name (RDN G or GN).
initials string: Personal initials.
localityName string: Locality (RDN L).
organization string: Organization (RDN O).
organizationalUnit string: Organizational unit (RDN OU).
pseudonym string: Subject pseudonym.
serialNumber string: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName string: State or province name (RDN ST or S).
street string: Street address (RDN STREET).
surname string: Personal surname (RDN SN).
title string: Title (RDN T or TITLE).
userId string: User ID (RDN UID).

common_name str: Common name or fully-qualified domain name (RDN CN).
country str: Country name (RDN C).
distinguished_name_qualifier str: Distinguished name qualifier(RDN DNQ).
domain_component str: Domain component (RDN DC).
generation_qualifier str: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
given_name str: Personal given name (RDN G or GN).
initials str: Personal initials.
locality_name str: Locality (RDN L).
organization str: Organization (RDN O).
organizational_unit str: Organizational unit (RDN OU).
pseudonym str: Subject pseudonym.
serial_number str: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
state_or_province_name str: State or province name (RDN ST or S).
street str: Street address (RDN STREET).
surname str: Personal surname (RDN SN).
title str: Title (RDN T or TITLE).
user_id str: User ID (RDN UID).

commonName String: Common name or fully-qualified domain name (RDN CN).
country String: Country name (RDN C).
distinguishedNameQualifier String: Distinguished name qualifier(RDN DNQ).
domainComponent String: Domain component (RDN DC).
generationQualifier String: Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName String: Personal given name (RDN G or GN).
initials String: Personal initials.
localityName String: Locality (RDN L).
organization String: Organization (RDN O).
organizationalUnit String: Organizational unit (RDN OU).
pseudonym String: Subject pseudonym.
serialNumber String: Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName String: State or province name (RDN ST or S).
street String: Street address (RDN STREET).
surname String: Personal surname (RDN SN).
title String: Title (RDN T or TITLE).
userId String: User ID (RDN UID).

Import

CertificateAuthorities can be imported using the id, e.g.

 $ pulumi import oci:CertificatesManagement/certificateAuthority:CertificateAuthority test_certificate_authority "id"

Package Details

Repository: oci pulumi/pulumi-oci
License: Apache-2.0
Notes: This Pulumi package is based on the oci Terraform Provider.

Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi

pulumi/pulumi-oci

oci.CertificatesManagement.CertificateAuthority

On this page

On this page

Create CertificateAuthority Resource

CertificateAuthority Resource Properties

Inputs

Outputs

Look up Existing CertificateAuthority Resource

Supporting Types

CertificateAuthorityCertificateAuthorityConfig, CertificateAuthorityCertificateAuthorityConfigArgs

CertificateAuthorityCertificateAuthorityConfigSubject, CertificateAuthorityCertificateAuthorityConfigSubjectArgs

CertificateAuthorityCertificateAuthorityConfigValidity, CertificateAuthorityCertificateAuthorityConfigValidityArgs

CertificateAuthorityCertificateAuthorityRule, CertificateAuthorityCertificateAuthorityRuleArgs

CertificateAuthorityCertificateRevocationListDetails, CertificateAuthorityCertificateRevocationListDetailsArgs

CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig, CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfigArgs

CertificateAuthorityCurrentVersion, CertificateAuthorityCurrentVersionArgs

CertificateAuthorityCurrentVersionRevocationStatus, CertificateAuthorityCurrentVersionRevocationStatusArgs

CertificateAuthorityCurrentVersionValidity, CertificateAuthorityCurrentVersionValidityArgs

CertificateAuthoritySubject, CertificateAuthoritySubjectArgs

Import

Package Details

On this page

On this page