1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. CertificatesManagement
  5. CertificateAuthority
Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi

oci.CertificatesManagement.CertificateAuthority

Explore with Pulumi AI

oci logo
Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi

    This resource provides the Certificate Authority resource in Oracle Cloud Infrastructure Certificates Management service.

    Creates a new certificate authority (CA) according to the details of the request.

    Create CertificateAuthority Resource

    new CertificateAuthority(name: string, args: CertificateAuthorityArgs, opts?: CustomResourceOptions);
    @overload
    def CertificateAuthority(resource_name: str,
                             opts: Optional[ResourceOptions] = None,
                             certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
                             certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
                             certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
                             compartment_id: Optional[str] = None,
                             defined_tags: Optional[Mapping[str, Any]] = None,
                             description: Optional[str] = None,
                             freeform_tags: Optional[Mapping[str, Any]] = None,
                             kms_key_id: Optional[str] = None,
                             name: Optional[str] = None)
    @overload
    def CertificateAuthority(resource_name: str,
                             args: CertificateAuthorityArgs,
                             opts: Optional[ResourceOptions] = None)
    func NewCertificateAuthority(ctx *Context, name string, args CertificateAuthorityArgs, opts ...ResourceOption) (*CertificateAuthority, error)
    public CertificateAuthority(string name, CertificateAuthorityArgs args, CustomResourceOptions? opts = null)
    public CertificateAuthority(String name, CertificateAuthorityArgs args)
    public CertificateAuthority(String name, CertificateAuthorityArgs args, CustomResourceOptions options)
    
    type: oci:CertificatesManagement:CertificateAuthority
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args CertificateAuthorityArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args CertificateAuthorityArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args CertificateAuthorityArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args CertificateAuthorityArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args CertificateAuthorityArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    CertificateAuthority Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The CertificateAuthority resource accepts the following input properties:

    CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    CompartmentId string

    (Updatable) The compartment in which you want to create the CA.

    KmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

    (Updatable) A list of rules that control how the CA is used and managed.

    CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    DefinedTags Dictionary<string, object>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    Description string

    (Updatable) A brief description of the CA.

    FreeformTags Dictionary<string, object>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    Name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

    (Updatable) The configuration details for creating a certificate authority (CA).

    CompartmentId string

    (Updatable) The compartment in which you want to create the CA.

    KmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

    (Updatable) A list of rules that control how the CA is used and managed.

    CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

    (Updatable) The details of the certificate revocation list (CRL).

    DefinedTags map[string]interface{}

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    Description string

    (Updatable) A brief description of the CA.

    FreeformTags map[string]interface{}

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    Name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    compartmentId String

    (Updatable) The compartment in which you want to create the CA.

    kmsKeyId String

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    definedTags Map<String,Object>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description String

    (Updatable) A brief description of the CA.

    freeformTags Map<String,Object>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    name String

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    compartmentId string

    (Updatable) The compartment in which you want to create the CA.

    kmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    certificateAuthorityRules CertificateAuthorityCertificateAuthorityRule[]

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    definedTags {[key: string]: any}

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description string

    (Updatable) A brief description of the CA.

    freeformTags {[key: string]: any}

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

    (Updatable) The configuration details for creating a certificate authority (CA).

    compartment_id str

    (Updatable) The compartment in which you want to create the CA.

    kms_key_id str

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

    (Updatable) A list of rules that control how the CA is used and managed.

    certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

    (Updatable) The details of the certificate revocation list (CRL).

    defined_tags Mapping[str, Any]

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description str

    (Updatable) A brief description of the CA.

    freeform_tags Mapping[str, Any]

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    name str

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    certificateAuthorityConfig Property Map

    (Updatable) The configuration details for creating a certificate authority (CA).

    compartmentId String

    (Updatable) The compartment in which you want to create the CA.

    kmsKeyId String

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    certificateAuthorityRules List<Property Map>

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails Property Map

    (Updatable) The details of the certificate revocation list (CRL).

    definedTags Map<Any>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description String

    (Updatable) A brief description of the CA.

    freeformTags Map<Any>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    name String

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    Outputs

    All input properties are implicitly available as output properties. Additionally, the CertificateAuthority resource produces the following output properties:

    ConfigType string

    (Updatable) The origin of the CA.

    CurrentVersions List<CertificateAuthorityCurrentVersion>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    Id string

    The provider-assigned unique ID for this managed resource.

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    LifecycleDetails string

    Additional information about the current CA lifecycle state.

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    State string

    The current lifecycle state of the certificate authority.

    Subjects List<CertificateAuthoritySubject>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    ConfigType string

    (Updatable) The origin of the CA.

    CurrentVersions []CertificateAuthorityCurrentVersion

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    Id string

    The provider-assigned unique ID for this managed resource.

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    LifecycleDetails string

    Additional information about the current CA lifecycle state.

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    State string

    The current lifecycle state of the certificate authority.

    Subjects []CertificateAuthoritySubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    configType String

    (Updatable) The origin of the CA.

    currentVersions List<CertificateAuthorityCurrentVersion>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    id String

    The provider-assigned unique ID for this managed resource.

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    lifecycleDetails String

    Additional information about the current CA lifecycle state.

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    state String

    The current lifecycle state of the certificate authority.

    subjects List<CertificateAuthoritySubject>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    configType string

    (Updatable) The origin of the CA.

    currentVersions CertificateAuthorityCurrentVersion[]

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    id string

    The provider-assigned unique ID for this managed resource.

    issuerCertificateAuthorityId string

    The OCID of the private CA.

    lifecycleDetails string

    Additional information about the current CA lifecycle state.

    signingAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    state string

    The current lifecycle state of the certificate authority.

    subjects CertificateAuthoritySubject[]

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    config_type str

    (Updatable) The origin of the CA.

    current_versions CertificateAuthorityCurrentVersion]

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    id str

    The provider-assigned unique ID for this managed resource.

    issuer_certificate_authority_id str

    The OCID of the private CA.

    lifecycle_details str

    Additional information about the current CA lifecycle state.

    signing_algorithm str

    The algorithm used to sign public key certificates that the CA issues.

    state str

    The current lifecycle state of the certificate authority.

    subjects CertificateAuthoritySubject]

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    time_created str

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_deletion str

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    configType String

    (Updatable) The origin of the CA.

    currentVersions List<Property Map>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    id String

    The provider-assigned unique ID for this managed resource.

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    lifecycleDetails String

    Additional information about the current CA lifecycle state.

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    state String

    The current lifecycle state of the certificate authority.

    subjects List<Property Map>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    Look up Existing CertificateAuthority Resource

    Get an existing CertificateAuthority resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: CertificateAuthorityState, opts?: CustomResourceOptions): CertificateAuthority
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
            certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
            certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
            compartment_id: Optional[str] = None,
            config_type: Optional[str] = None,
            current_versions: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCurrentVersionArgs]] = None,
            defined_tags: Optional[Mapping[str, Any]] = None,
            description: Optional[str] = None,
            freeform_tags: Optional[Mapping[str, Any]] = None,
            issuer_certificate_authority_id: Optional[str] = None,
            kms_key_id: Optional[str] = None,
            lifecycle_details: Optional[str] = None,
            name: Optional[str] = None,
            signing_algorithm: Optional[str] = None,
            state: Optional[str] = None,
            subjects: Optional[Sequence[_certificatesmanagement.CertificateAuthoritySubjectArgs]] = None,
            time_created: Optional[str] = None,
            time_of_deletion: Optional[str] = None) -> CertificateAuthority
    func GetCertificateAuthority(ctx *Context, name string, id IDInput, state *CertificateAuthorityState, opts ...ResourceOption) (*CertificateAuthority, error)
    public static CertificateAuthority Get(string name, Input<string> id, CertificateAuthorityState? state, CustomResourceOptions? opts = null)
    public static CertificateAuthority get(String name, Output<String> id, CertificateAuthorityState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

    (Updatable) A list of rules that control how the CA is used and managed.

    CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    CompartmentId string

    (Updatable) The compartment in which you want to create the CA.

    ConfigType string

    (Updatable) The origin of the CA.

    CurrentVersions List<CertificateAuthorityCurrentVersion>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    DefinedTags Dictionary<string, object>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    Description string

    (Updatable) A brief description of the CA.

    FreeformTags Dictionary<string, object>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    KmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    LifecycleDetails string

    Additional information about the current CA lifecycle state.

    Name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    State string

    The current lifecycle state of the certificate authority.

    Subjects List<CertificateAuthoritySubject>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

    (Updatable) The configuration details for creating a certificate authority (CA).

    CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

    (Updatable) A list of rules that control how the CA is used and managed.

    CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

    (Updatable) The details of the certificate revocation list (CRL).

    CompartmentId string

    (Updatable) The compartment in which you want to create the CA.

    ConfigType string

    (Updatable) The origin of the CA.

    CurrentVersions []CertificateAuthorityCurrentVersionArgs

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    DefinedTags map[string]interface{}

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    Description string

    (Updatable) A brief description of the CA.

    FreeformTags map[string]interface{}

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    KmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    LifecycleDetails string

    Additional information about the current CA lifecycle state.

    Name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    State string

    The current lifecycle state of the certificate authority.

    Subjects []CertificateAuthoritySubjectArgs

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRule>

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    compartmentId String

    (Updatable) The compartment in which you want to create the CA.

    configType String

    (Updatable) The origin of the CA.

    currentVersions List<CertificateAuthorityCurrentVersion>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    definedTags Map<String,Object>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description String

    (Updatable) A brief description of the CA.

    freeformTags Map<String,Object>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    kmsKeyId String

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    lifecycleDetails String

    Additional information about the current CA lifecycle state.

    name String

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    state String

    The current lifecycle state of the certificate authority.

    subjects List<CertificateAuthoritySubject>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfig

    (Updatable) The configuration details for creating a certificate authority (CA).

    certificateAuthorityRules CertificateAuthorityCertificateAuthorityRule[]

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetails

    (Updatable) The details of the certificate revocation list (CRL).

    compartmentId string

    (Updatable) The compartment in which you want to create the CA.

    configType string

    (Updatable) The origin of the CA.

    currentVersions CertificateAuthorityCurrentVersion[]

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    definedTags {[key: string]: any}

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description string

    (Updatable) A brief description of the CA.

    freeformTags {[key: string]: any}

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    issuerCertificateAuthorityId string

    The OCID of the private CA.

    kmsKeyId string

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    lifecycleDetails string

    Additional information about the current CA lifecycle state.

    name string

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    signingAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    state string

    The current lifecycle state of the certificate authority.

    subjects CertificateAuthoritySubject[]

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

    (Updatable) The configuration details for creating a certificate authority (CA).

    certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

    (Updatable) A list of rules that control how the CA is used and managed.

    certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

    (Updatable) The details of the certificate revocation list (CRL).

    compartment_id str

    (Updatable) The compartment in which you want to create the CA.

    config_type str

    (Updatable) The origin of the CA.

    current_versions CertificateAuthorityCurrentVersionArgs]

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    defined_tags Mapping[str, Any]

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description str

    (Updatable) A brief description of the CA.

    freeform_tags Mapping[str, Any]

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    issuer_certificate_authority_id str

    The OCID of the private CA.

    kms_key_id str

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    lifecycle_details str

    Additional information about the current CA lifecycle state.

    name str

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    signing_algorithm str

    The algorithm used to sign public key certificates that the CA issues.

    state str

    The current lifecycle state of the certificate authority.

    subjects CertificateAuthoritySubjectArgs]

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    time_created str

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_deletion str

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    certificateAuthorityConfig Property Map

    (Updatable) The configuration details for creating a certificate authority (CA).

    certificateAuthorityRules List<Property Map>

    (Updatable) A list of rules that control how the CA is used and managed.

    certificateRevocationListDetails Property Map

    (Updatable) The details of the certificate revocation list (CRL).

    compartmentId String

    (Updatable) The compartment in which you want to create the CA.

    configType String

    (Updatable) The origin of the CA.

    currentVersions List<Property Map>

    The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

    definedTags Map<Any>

    (Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

    description String

    (Updatable) A brief description of the CA.

    freeformTags Map<Any>

    (Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    kmsKeyId String

    The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

    lifecycleDetails String

    Additional information about the current CA lifecycle state.

    name String

    A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

    ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    state String

    The current lifecycle state of the certificate authority.

    subjects List<Property Map>

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    Supporting Types

    CertificateAuthorityCertificateAuthorityConfig, CertificateAuthorityCertificateAuthorityConfigArgs

    ConfigType string

    (Updatable) The origin of the CA.

    Subject CertificateAuthorityCertificateAuthorityConfigSubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    Validity CertificateAuthorityCertificateAuthorityConfigValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    VersionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    ConfigType string

    (Updatable) The origin of the CA.

    Subject CertificateAuthorityCertificateAuthorityConfigSubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    IssuerCertificateAuthorityId string

    The OCID of the private CA.

    SigningAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    Validity CertificateAuthorityCertificateAuthorityConfigValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    VersionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    configType String

    (Updatable) The origin of the CA.

    subject CertificateAuthorityCertificateAuthorityConfigSubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    validity CertificateAuthorityCertificateAuthorityConfigValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName String

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    configType string

    (Updatable) The origin of the CA.

    subject CertificateAuthorityCertificateAuthorityConfigSubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    issuerCertificateAuthorityId string

    The OCID of the private CA.

    signingAlgorithm string

    The algorithm used to sign public key certificates that the CA issues.

    validity CertificateAuthorityCertificateAuthorityConfigValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    config_type str

    (Updatable) The origin of the CA.

    subject CertificateAuthorityCertificateAuthorityConfigSubject

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    issuer_certificate_authority_id str

    The OCID of the private CA.

    signing_algorithm str

    The algorithm used to sign public key certificates that the CA issues.

    validity CertificateAuthorityCertificateAuthorityConfigValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    version_name str

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    configType String

    (Updatable) The origin of the CA.

    subject Property Map

    The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

    issuerCertificateAuthorityId String

    The OCID of the private CA.

    signingAlgorithm String

    The algorithm used to sign public key certificates that the CA issues.

    validity Property Map

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName String

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    CertificateAuthorityCertificateAuthorityConfigSubject, CertificateAuthorityCertificateAuthorityConfigSubjectArgs

    CommonName string

    Common name or fully-qualified domain name (RDN CN).

    Country string

    Country name (RDN C).

    DistinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    DomainComponent string

    Domain component (RDN DC).

    GenerationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    GivenName string

    Personal given name (RDN G or GN).

    Initials string

    Personal initials.

    LocalityName string

    Locality (RDN L).

    Organization string

    Organization (RDN O).

    OrganizationalUnit string

    Organizational unit (RDN OU).

    Pseudonym string

    Subject pseudonym.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    StateOrProvinceName string

    State or province name (RDN ST or S).

    Street string

    Street address (RDN STREET).

    Surname string

    Personal surname (RDN SN).

    Title string

    Title (RDN T or TITLE).

    UserId string

    User ID (RDN UID).

    CommonName string

    Common name or fully-qualified domain name (RDN CN).

    Country string

    Country name (RDN C).

    DistinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    DomainComponent string

    Domain component (RDN DC).

    GenerationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    GivenName string

    Personal given name (RDN G or GN).

    Initials string

    Personal initials.

    LocalityName string

    Locality (RDN L).

    Organization string

    Organization (RDN O).

    OrganizationalUnit string

    Organizational unit (RDN OU).

    Pseudonym string

    Subject pseudonym.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    StateOrProvinceName string

    State or province name (RDN ST or S).

    Street string

    Street address (RDN STREET).

    Surname string

    Personal surname (RDN SN).

    Title string

    Title (RDN T or TITLE).

    UserId string

    User ID (RDN UID).

    commonName String

    Common name or fully-qualified domain name (RDN CN).

    country String

    Country name (RDN C).

    distinguishedNameQualifier String

    Distinguished name qualifier(RDN DNQ).

    domainComponent String

    Domain component (RDN DC).

    generationQualifier String

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName String

    Personal given name (RDN G or GN).

    initials String

    Personal initials.

    localityName String

    Locality (RDN L).

    organization String

    Organization (RDN O).

    organizationalUnit String

    Organizational unit (RDN OU).

    pseudonym String

    Subject pseudonym.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName String

    State or province name (RDN ST or S).

    street String

    Street address (RDN STREET).

    surname String

    Personal surname (RDN SN).

    title String

    Title (RDN T or TITLE).

    userId String

    User ID (RDN UID).

    commonName string

    Common name or fully-qualified domain name (RDN CN).

    country string

    Country name (RDN C).

    distinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    domainComponent string

    Domain component (RDN DC).

    generationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName string

    Personal given name (RDN G or GN).

    initials string

    Personal initials.

    localityName string

    Locality (RDN L).

    organization string

    Organization (RDN O).

    organizationalUnit string

    Organizational unit (RDN OU).

    pseudonym string

    Subject pseudonym.

    serialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName string

    State or province name (RDN ST or S).

    street string

    Street address (RDN STREET).

    surname string

    Personal surname (RDN SN).

    title string

    Title (RDN T or TITLE).

    userId string

    User ID (RDN UID).

    common_name str

    Common name or fully-qualified domain name (RDN CN).

    country str

    Country name (RDN C).

    distinguished_name_qualifier str

    Distinguished name qualifier(RDN DNQ).

    domain_component str

    Domain component (RDN DC).

    generation_qualifier str

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    given_name str

    Personal given name (RDN G or GN).

    initials str

    Personal initials.

    locality_name str

    Locality (RDN L).

    organization str

    Organization (RDN O).

    organizational_unit str

    Organizational unit (RDN OU).

    pseudonym str

    Subject pseudonym.

    serial_number str

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    state_or_province_name str

    State or province name (RDN ST or S).

    street str

    Street address (RDN STREET).

    surname str

    Personal surname (RDN SN).

    title str

    Title (RDN T or TITLE).

    user_id str

    User ID (RDN UID).

    commonName String

    Common name or fully-qualified domain name (RDN CN).

    country String

    Country name (RDN C).

    distinguishedNameQualifier String

    Distinguished name qualifier(RDN DNQ).

    domainComponent String

    Domain component (RDN DC).

    generationQualifier String

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName String

    Personal given name (RDN G or GN).

    initials String

    Personal initials.

    localityName String

    Locality (RDN L).

    organization String

    Organization (RDN O).

    organizationalUnit String

    Organizational unit (RDN OU).

    pseudonym String

    Subject pseudonym.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName String

    State or province name (RDN ST or S).

    street String

    Street address (RDN STREET).

    surname String

    Personal surname (RDN SN).

    title String

    Title (RDN T or TITLE).

    userId String

    User ID (RDN UID).

    CertificateAuthorityCertificateAuthorityConfigValidity, CertificateAuthorityCertificateAuthorityConfigValidityArgs

    TimeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter String

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore String

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_validity_not_after str

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_validity_not_before str

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter String

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore String

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    CertificateAuthorityCertificateAuthorityRule, CertificateAuthorityCertificateAuthorityRuleArgs

    RuleType string

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    CertificateAuthorityMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    LeafCertificateMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    RuleType string

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    CertificateAuthorityMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    LeafCertificateMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    ruleType String

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    certificateAuthorityMaxValidityDuration String

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    leafCertificateMaxValidityDuration String

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    ruleType string

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    certificateAuthorityMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    leafCertificateMaxValidityDuration string

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    rule_type str

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    certificate_authority_max_validity_duration str

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    leaf_certificate_max_validity_duration str

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    ruleType String

    (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

    certificateAuthorityMaxValidityDuration String

    (Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

    leafCertificateMaxValidityDuration String

    (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

    CertificateAuthorityCertificateRevocationListDetails, CertificateAuthorityCertificateRevocationListDetailsArgs

    ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    CustomFormattedUrls List<string>

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    CustomFormattedUrls []string

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    customFormattedUrls List<String>

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    customFormattedUrls string[]

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    object_storage_config CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    custom_formatted_urls Sequence[str]

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageConfig Property Map

    (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

    customFormattedUrls List<String>

    (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig, CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfigArgs

    ObjectStorageBucketName string

    (Updatable) The name of the bucket where the CRL is stored.

    ObjectStorageObjectNameFormat string

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    ObjectStorageNamespace string

    (Updatable) The tenancy of the bucket where the CRL is stored.

    ObjectStorageBucketName string

    (Updatable) The name of the bucket where the CRL is stored.

    ObjectStorageObjectNameFormat string

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    ObjectStorageNamespace string

    (Updatable) The tenancy of the bucket where the CRL is stored.

    objectStorageBucketName String

    (Updatable) The name of the bucket where the CRL is stored.

    objectStorageObjectNameFormat String

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageNamespace String

    (Updatable) The tenancy of the bucket where the CRL is stored.

    objectStorageBucketName string

    (Updatable) The name of the bucket where the CRL is stored.

    objectStorageObjectNameFormat string

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageNamespace string

    (Updatable) The tenancy of the bucket where the CRL is stored.

    object_storage_bucket_name str

    (Updatable) The name of the bucket where the CRL is stored.

    object_storage_object_name_format str

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    object_storage_namespace str

    (Updatable) The tenancy of the bucket where the CRL is stored.

    objectStorageBucketName String

    (Updatable) The name of the bucket where the CRL is stored.

    objectStorageObjectNameFormat String

    (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

    objectStorageNamespace String

    (Updatable) The tenancy of the bucket where the CRL is stored.

    CertificateAuthorityCurrentVersion, CertificateAuthorityCurrentVersionArgs

    CertificateAuthorityId string

    The OCID of the CA.

    IssuerCaVersionNumber string

    The version number of the issuing CA.

    RevocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>

    The current revocation status of the entity.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    Stages List<string>

    A list of rotation states for this CA version.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    Validities List<CertificateAuthorityCurrentVersionValidity>

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    VersionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    VersionNumber string

    The version number of the CA.

    CertificateAuthorityId string

    The OCID of the CA.

    IssuerCaVersionNumber string

    The version number of the issuing CA.

    RevocationStatuses []CertificateAuthorityCurrentVersionRevocationStatus

    The current revocation status of the entity.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    Stages []string

    A list of rotation states for this CA version.

    TimeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    Validities []CertificateAuthorityCurrentVersionValidity

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    VersionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    VersionNumber string

    The version number of the CA.

    certificateAuthorityId String

    The OCID of the CA.

    issuerCaVersionNumber String

    The version number of the issuing CA.

    revocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>

    The current revocation status of the entity.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stages List<String>

    A list of rotation states for this CA version.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    validities List<CertificateAuthorityCurrentVersionValidity>

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName String

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    versionNumber String

    The version number of the CA.

    certificateAuthorityId string

    The OCID of the CA.

    issuerCaVersionNumber string

    The version number of the issuing CA.

    revocationStatuses CertificateAuthorityCurrentVersionRevocationStatus[]

    The current revocation status of the entity.

    serialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stages string[]

    A list of rotation states for this CA version.

    timeCreated string

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion string

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    validities CertificateAuthorityCurrentVersionValidity[]

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName string

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    versionNumber string

    The version number of the CA.

    certificate_authority_id str

    The OCID of the CA.

    issuer_ca_version_number str

    The version number of the issuing CA.

    revocation_statuses CertificateAuthorityCurrentVersionRevocationStatus]

    The current revocation status of the entity.

    serial_number str

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stages Sequence[str]

    A list of rotation states for this CA version.

    time_created str

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_deletion str

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    validities CertificateAuthorityCurrentVersionValidity]

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    version_name str

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    version_number str

    The version number of the CA.

    certificateAuthorityId String

    The OCID of the CA.

    issuerCaVersionNumber String

    The version number of the issuing CA.

    revocationStatuses List<Property Map>

    The current revocation status of the entity.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stages List<String>

    A list of rotation states for this CA version.

    timeCreated String

    A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfDeletion String

    An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    validities List<Property Map>

    (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

    versionName String

    (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

    versionNumber String

    The version number of the CA.

    CertificateAuthorityCurrentVersionRevocationStatus, CertificateAuthorityCurrentVersionRevocationStatusArgs

    RevocationReason string

    The reason the certificate or certificate authority (CA) was revoked.

    TimeOfRevocation string

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    RevocationReason string

    The reason the certificate or certificate authority (CA) was revoked.

    TimeOfRevocation string

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    revocationReason String

    The reason the certificate or certificate authority (CA) was revoked.

    timeOfRevocation String

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    revocationReason string

    The reason the certificate or certificate authority (CA) was revoked.

    timeOfRevocation string

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    revocation_reason str

    The reason the certificate or certificate authority (CA) was revoked.

    time_of_revocation str

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    revocationReason String

    The reason the certificate or certificate authority (CA) was revoked.

    timeOfRevocation String

    The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    CertificateAuthorityCurrentVersionValidity, CertificateAuthorityCurrentVersionValidityArgs

    TimeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    TimeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter String

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore String

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter string

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore string

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_validity_not_after str

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    time_of_validity_not_before str

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotAfter String

    (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    timeOfValidityNotBefore String

    (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

    CertificateAuthoritySubject, CertificateAuthoritySubjectArgs

    CommonName string

    Common name or fully-qualified domain name (RDN CN).

    Country string

    Country name (RDN C).

    DistinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    DomainComponent string

    Domain component (RDN DC).

    GenerationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    GivenName string

    Personal given name (RDN G or GN).

    Initials string

    Personal initials.

    LocalityName string

    Locality (RDN L).

    Organization string

    Organization (RDN O).

    OrganizationalUnit string

    Organizational unit (RDN OU).

    Pseudonym string

    Subject pseudonym.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    StateOrProvinceName string

    State or province name (RDN ST or S).

    Street string

    Street address (RDN STREET).

    Surname string

    Personal surname (RDN SN).

    Title string

    Title (RDN T or TITLE).

    UserId string

    User ID (RDN UID).

    CommonName string

    Common name or fully-qualified domain name (RDN CN).

    Country string

    Country name (RDN C).

    DistinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    DomainComponent string

    Domain component (RDN DC).

    GenerationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    GivenName string

    Personal given name (RDN G or GN).

    Initials string

    Personal initials.

    LocalityName string

    Locality (RDN L).

    Organization string

    Organization (RDN O).

    OrganizationalUnit string

    Organizational unit (RDN OU).

    Pseudonym string

    Subject pseudonym.

    SerialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    StateOrProvinceName string

    State or province name (RDN ST or S).

    Street string

    Street address (RDN STREET).

    Surname string

    Personal surname (RDN SN).

    Title string

    Title (RDN T or TITLE).

    UserId string

    User ID (RDN UID).

    commonName String

    Common name or fully-qualified domain name (RDN CN).

    country String

    Country name (RDN C).

    distinguishedNameQualifier String

    Distinguished name qualifier(RDN DNQ).

    domainComponent String

    Domain component (RDN DC).

    generationQualifier String

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName String

    Personal given name (RDN G or GN).

    initials String

    Personal initials.

    localityName String

    Locality (RDN L).

    organization String

    Organization (RDN O).

    organizationalUnit String

    Organizational unit (RDN OU).

    pseudonym String

    Subject pseudonym.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName String

    State or province name (RDN ST or S).

    street String

    Street address (RDN STREET).

    surname String

    Personal surname (RDN SN).

    title String

    Title (RDN T or TITLE).

    userId String

    User ID (RDN UID).

    commonName string

    Common name or fully-qualified domain name (RDN CN).

    country string

    Country name (RDN C).

    distinguishedNameQualifier string

    Distinguished name qualifier(RDN DNQ).

    domainComponent string

    Domain component (RDN DC).

    generationQualifier string

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName string

    Personal given name (RDN G or GN).

    initials string

    Personal initials.

    localityName string

    Locality (RDN L).

    organization string

    Organization (RDN O).

    organizationalUnit string

    Organizational unit (RDN OU).

    pseudonym string

    Subject pseudonym.

    serialNumber string

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName string

    State or province name (RDN ST or S).

    street string

    Street address (RDN STREET).

    surname string

    Personal surname (RDN SN).

    title string

    Title (RDN T or TITLE).

    userId string

    User ID (RDN UID).

    common_name str

    Common name or fully-qualified domain name (RDN CN).

    country str

    Country name (RDN C).

    distinguished_name_qualifier str

    Distinguished name qualifier(RDN DNQ).

    domain_component str

    Domain component (RDN DC).

    generation_qualifier str

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    given_name str

    Personal given name (RDN G or GN).

    initials str

    Personal initials.

    locality_name str

    Locality (RDN L).

    organization str

    Organization (RDN O).

    organizational_unit str

    Organizational unit (RDN OU).

    pseudonym str

    Subject pseudonym.

    serial_number str

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    state_or_province_name str

    State or province name (RDN ST or S).

    street str

    Street address (RDN STREET).

    surname str

    Personal surname (RDN SN).

    title str

    Title (RDN T or TITLE).

    user_id str

    User ID (RDN UID).

    commonName String

    Common name or fully-qualified domain name (RDN CN).

    country String

    Country name (RDN C).

    distinguishedNameQualifier String

    Distinguished name qualifier(RDN DNQ).

    domainComponent String

    Domain component (RDN DC).

    generationQualifier String

    Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

    givenName String

    Personal given name (RDN G or GN).

    initials String

    Personal initials.

    localityName String

    Locality (RDN L).

    organization String

    Organization (RDN O).

    organizationalUnit String

    Organizational unit (RDN OU).

    pseudonym String

    Subject pseudonym.

    serialNumber String

    Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

    stateOrProvinceName String

    State or province name (RDN ST or S).

    street String

    Street address (RDN STREET).

    surname String

    Personal surname (RDN SN).

    title String

    Title (RDN T or TITLE).

    userId String

    User ID (RDN UID).

    Import

    CertificateAuthorities can be imported using the id, e.g.

     $ pulumi import oci:CertificatesManagement/certificateAuthority:CertificateAuthority test_certificate_authority "id"
    

    Package Details

    Repository
    oci pulumi/pulumi-oci
    License
    Apache-2.0
    Notes

    This Pulumi package is based on the oci Terraform Provider.

    oci logo
    Oracle Cloud Infrastructure v1.11.0 published on Wednesday, Sep 27, 2023 by Pulumi