Oracle Cloud Infrastructure

v0.5.0 published on Monday, Sep 12, 2022 by Pulumi

CertificateAuthority

This resource provides the Certificate Authority resource in Oracle Cloud Infrastructure Certificates Management service.

Creates a new certificate authority (CA) according to the details of the request.

Create CertificateAuthority Resource

new CertificateAuthority(name: string, args: CertificateAuthorityArgs, opts?: CustomResourceOptions);
@overload
def CertificateAuthority(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
                         certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
                         certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
                         compartment_id: Optional[str] = None,
                         defined_tags: Optional[Mapping[str, Any]] = None,
                         description: Optional[str] = None,
                         freeform_tags: Optional[Mapping[str, Any]] = None,
                         kms_key_id: Optional[str] = None,
                         name: Optional[str] = None)
@overload
def CertificateAuthority(resource_name: str,
                         args: CertificateAuthorityArgs,
                         opts: Optional[ResourceOptions] = None)
func NewCertificateAuthority(ctx *Context, name string, args CertificateAuthorityArgs, opts ...ResourceOption) (*CertificateAuthority, error)
public CertificateAuthority(string name, CertificateAuthorityArgs args, CustomResourceOptions? opts = null)
public CertificateAuthority(String name, CertificateAuthorityArgs args)
public CertificateAuthority(String name, CertificateAuthorityArgs args, CustomResourceOptions options)
type: oci:CertificatesManagement:CertificateAuthority
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args CertificateAuthorityArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args CertificateAuthorityArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args CertificateAuthorityArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args CertificateAuthorityArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args CertificateAuthorityArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

CertificateAuthority Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The CertificateAuthority resource accepts the following input properties:

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRuleArgs>

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

DefinedTags Dictionary<string, object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags Dictionary<string, object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

Name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

DefinedTags map[string]interface{}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags map[string]interface{}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

Name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRuleArgs>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

definedTags Map<String,Object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<String,Object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name String

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId string

(Updatable) The compartment in which you want to create the CA.

kmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules CertificateAuthorityCertificateAuthorityRuleArgs[]

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

definedTags {[key: string]: any}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description string

(Updatable) A brief description of the CA.

freeformTags {[key: string]: any}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

compartment_id str

(Updatable) The compartment in which you want to create the CA.

kms_key_id str

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

(Updatable) A list of rules that control how the CA is used and managed.

certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

defined_tags Mapping[str, Any]

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description str

(Updatable) A brief description of the CA.

freeform_tags Mapping[str, Any]

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name str

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

certificateAuthorityConfig Property Map

(Updatable) The configuration details for creating a certificate authority (CA).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

certificateAuthorityRules List<Property Map>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails Property Map

(Updatable) The details of the certificate revocation list (CRL).

definedTags Map<Any>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<Any>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

name String

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

Outputs

All input properties are implicitly available as output properties. Additionally, the CertificateAuthority resource produces the following output properties:

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions List<CertificateAuthorityCurrentVersion>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

Id string

The provider-assigned unique ID for this managed resource.

IssuerCertificateAuthorityId string

The OCID of the private CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects List<CertificateAuthoritySubject>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions []CertificateAuthorityCurrentVersion

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

Id string

The provider-assigned unique ID for this managed resource.

IssuerCertificateAuthorityId string

The OCID of the private CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects []CertificateAuthoritySubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType String

(Updatable) The origin of the CA.

currentVersions List<CertificateAuthorityCurrentVersion>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

id String

The provider-assigned unique ID for this managed resource.

issuerCertificateAuthorityId String

The OCID of the private CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<CertificateAuthoritySubject>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType string

(Updatable) The origin of the CA.

currentVersions CertificateAuthorityCurrentVersion[]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

id string

The provider-assigned unique ID for this managed resource.

issuerCertificateAuthorityId string

The OCID of the private CA.

lifecycleDetails string

Additional information about the current CA lifecycle state.

signingAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

state string

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubject[]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

config_type str

(Updatable) The origin of the CA.

current_versions CertificateAuthorityCurrentVersion]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

id str

The provider-assigned unique ID for this managed resource.

issuer_certificate_authority_id str

The OCID of the private CA.

lifecycle_details str

Additional information about the current CA lifecycle state.

signing_algorithm str

The algorithm used to sign public key certificates that the CA issues.

state str

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubject]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

time_created str

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_deletion str

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

configType String

(Updatable) The origin of the CA.

currentVersions List<Property Map>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

id String

The provider-assigned unique ID for this managed resource.

issuerCertificateAuthorityId String

The OCID of the private CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<Property Map>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Look up Existing CertificateAuthority Resource

Get an existing CertificateAuthority resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: CertificateAuthorityState, opts?: CustomResourceOptions): CertificateAuthority
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
        certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
        certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
        compartment_id: Optional[str] = None,
        config_type: Optional[str] = None,
        current_versions: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCurrentVersionArgs]] = None,
        defined_tags: Optional[Mapping[str, Any]] = None,
        description: Optional[str] = None,
        freeform_tags: Optional[Mapping[str, Any]] = None,
        issuer_certificate_authority_id: Optional[str] = None,
        kms_key_id: Optional[str] = None,
        lifecycle_details: Optional[str] = None,
        name: Optional[str] = None,
        signing_algorithm: Optional[str] = None,
        state: Optional[str] = None,
        subjects: Optional[Sequence[_certificatesmanagement.CertificateAuthoritySubjectArgs]] = None,
        time_created: Optional[str] = None,
        time_of_deletion: Optional[str] = None) -> CertificateAuthority
func GetCertificateAuthority(ctx *Context, name string, id IDInput, state *CertificateAuthorityState, opts ...ResourceOption) (*CertificateAuthority, error)
public static CertificateAuthority Get(string name, Input<string> id, CertificateAuthorityState? state, CustomResourceOptions? opts = null)
public static CertificateAuthority get(String name, Output<String> id, CertificateAuthorityState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CertificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRuleArgs>

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions List<CertificateAuthorityCurrentVersionArgs>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

DefinedTags Dictionary<string, object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags Dictionary<string, object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

IssuerCertificateAuthorityId string

The OCID of the private CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

Name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects List<CertificateAuthoritySubjectArgs>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

CertificateAuthorityRules []CertificateAuthorityCertificateAuthorityRuleArgs

(Updatable) A list of rules that control how the CA is used and managed.

CertificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

CompartmentId string

(Updatable) The compartment in which you want to create the CA.

ConfigType string

(Updatable) The origin of the CA.

CurrentVersions []CertificateAuthorityCurrentVersionArgs

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

DefinedTags map[string]interface{}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

Description string

(Updatable) A brief description of the CA.

FreeformTags map[string]interface{}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

IssuerCertificateAuthorityId string

The OCID of the private CA.

KmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

LifecycleDetails string

Additional information about the current CA lifecycle state.

Name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

State string

The current lifecycle state of the certificate authority.

Subjects []CertificateAuthoritySubjectArgs

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules List<CertificateAuthorityCertificateAuthorityRuleArgs>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

configType String

(Updatable) The origin of the CA.

currentVersions List<CertificateAuthorityCurrentVersionArgs>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags Map<String,Object>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<String,Object>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId String

The OCID of the private CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

name String

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<CertificateAuthoritySubjectArgs>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules CertificateAuthorityCertificateAuthorityRuleArgs[]

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

compartmentId string

(Updatable) The compartment in which you want to create the CA.

configType string

(Updatable) The origin of the CA.

currentVersions CertificateAuthorityCurrentVersionArgs[]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags {[key: string]: any}

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description string

(Updatable) A brief description of the CA.

freeformTags {[key: string]: any}

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId string

The OCID of the private CA.

kmsKeyId string

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails string

Additional information about the current CA lifecycle state.

name string

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

signingAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

state string

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubjectArgs[]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificate_authority_config CertificateAuthorityCertificateAuthorityConfigArgs

(Updatable) The configuration details for creating a certificate authority (CA).

certificate_authority_rules CertificateAuthorityCertificateAuthorityRuleArgs]

(Updatable) A list of rules that control how the CA is used and managed.

certificate_revocation_list_details CertificateAuthorityCertificateRevocationListDetailsArgs

(Updatable) The details of the certificate revocation list (CRL).

compartment_id str

(Updatable) The compartment in which you want to create the CA.

config_type str

(Updatable) The origin of the CA.

current_versions CertificateAuthorityCurrentVersionArgs]

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

defined_tags Mapping[str, Any]

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description str

(Updatable) A brief description of the CA.

freeform_tags Mapping[str, Any]

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuer_certificate_authority_id str

The OCID of the private CA.

kms_key_id str

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycle_details str

Additional information about the current CA lifecycle state.

name str

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

signing_algorithm str

The algorithm used to sign public key certificates that the CA issues.

state str

The current lifecycle state of the certificate authority.

subjects CertificateAuthoritySubjectArgs]

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

time_created str

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_deletion str

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

certificateAuthorityConfig Property Map

(Updatable) The configuration details for creating a certificate authority (CA).

certificateAuthorityRules List<Property Map>

(Updatable) A list of rules that control how the CA is used and managed.

certificateRevocationListDetails Property Map

(Updatable) The details of the certificate revocation list (CRL).

compartmentId String

(Updatable) The compartment in which you want to create the CA.

configType String

(Updatable) The origin of the CA.

currentVersions List<Property Map>

The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.

definedTags Map<Any>

(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example: {"foo-namespace.bar-key": "value"}

description String

(Updatable) A brief description of the CA.

freeformTags Map<Any>

(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: {"bar-key": "value"}

issuerCertificateAuthorityId String

The OCID of the private CA.

kmsKeyId String

The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.

lifecycleDetails String

Additional information about the current CA lifecycle state.

name String

A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

state String

The current lifecycle state of the certificate authority.

subjects List<Property Map>

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Supporting Types

CertificateAuthorityCertificateAuthorityConfig

ConfigType string

(Updatable) The origin of the CA.

Subject CertificateAuthorityCertificateAuthorityConfigSubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

IssuerCertificateAuthorityId string

The OCID of the private CA.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

Validity CertificateAuthorityCertificateAuthorityConfigValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

VersionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

ConfigType string

(Updatable) The origin of the CA.

Subject CertificateAuthorityCertificateAuthorityConfigSubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

IssuerCertificateAuthorityId string

The OCID of the private CA.

SigningAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

Validity CertificateAuthorityCertificateAuthorityConfigValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

VersionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType String

(Updatable) The origin of the CA.

subject CertificateAuthorityCertificateAuthorityConfigSubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

issuerCertificateAuthorityId String

The OCID of the private CA.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

validity CertificateAuthorityCertificateAuthorityConfigValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName String

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType string

(Updatable) The origin of the CA.

subject CertificateAuthorityCertificateAuthorityConfigSubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

issuerCertificateAuthorityId string

The OCID of the private CA.

signingAlgorithm string

The algorithm used to sign public key certificates that the CA issues.

validity CertificateAuthorityCertificateAuthorityConfigValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

config_type str

(Updatable) The origin of the CA.

subject CertificateAuthorityCertificateAuthorityConfigSubject

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

issuer_certificate_authority_id str

The OCID of the private CA.

signing_algorithm str

The algorithm used to sign public key certificates that the CA issues.

validity CertificateAuthorityCertificateAuthorityConfigValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

version_name str

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

configType String

(Updatable) The origin of the CA.

subject Property Map

The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.

issuerCertificateAuthorityId String

The OCID of the private CA.

signingAlgorithm String

The algorithm used to sign public key certificates that the CA issues.

validity Property Map

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName String

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

CertificateAuthorityCertificateAuthorityConfigSubject

CommonName string

Common name or fully-qualified domain name (RDN CN).

Country string

Country name (RDN C).

DistinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

DomainComponent string

Domain component (RDN DC).

GenerationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

GivenName string

Personal given name (RDN G or GN).

Initials string

Personal initials.

LocalityName string

Locality (RDN L).

Organization string

Organization (RDN O).

OrganizationalUnit string

Organizational unit (RDN OU).

Pseudonym string

Subject pseudonym.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

StateOrProvinceName string

State or province name (RDN ST or S).

Street string

Street address (RDN STREET).

Surname string

Personal surname (RDN SN).

Title string

Title (RDN T or TITLE).

UserId string

User ID (RDN UID).

CommonName string

Common name or fully-qualified domain name (RDN CN).

Country string

Country name (RDN C).

DistinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

DomainComponent string

Domain component (RDN DC).

GenerationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

GivenName string

Personal given name (RDN G or GN).

Initials string

Personal initials.

LocalityName string

Locality (RDN L).

Organization string

Organization (RDN O).

OrganizationalUnit string

Organizational unit (RDN OU).

Pseudonym string

Subject pseudonym.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

StateOrProvinceName string

State or province name (RDN ST or S).

Street string

Street address (RDN STREET).

Surname string

Personal surname (RDN SN).

Title string

Title (RDN T or TITLE).

UserId string

User ID (RDN UID).

commonName String

Common name or fully-qualified domain name (RDN CN).

country String

Country name (RDN C).

distinguishedNameQualifier String

Distinguished name qualifier(RDN DNQ).

domainComponent String

Domain component (RDN DC).

generationQualifier String

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName String

Personal given name (RDN G or GN).

initials String

Personal initials.

localityName String

Locality (RDN L).

organization String

Organization (RDN O).

organizationalUnit String

Organizational unit (RDN OU).

pseudonym String

Subject pseudonym.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName String

State or province name (RDN ST or S).

street String

Street address (RDN STREET).

surname String

Personal surname (RDN SN).

title String

Title (RDN T or TITLE).

userId String

User ID (RDN UID).

commonName string

Common name or fully-qualified domain name (RDN CN).

country string

Country name (RDN C).

distinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

domainComponent string

Domain component (RDN DC).

generationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName string

Personal given name (RDN G or GN).

initials string

Personal initials.

localityName string

Locality (RDN L).

organization string

Organization (RDN O).

organizationalUnit string

Organizational unit (RDN OU).

pseudonym string

Subject pseudonym.

serialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName string

State or province name (RDN ST or S).

street string

Street address (RDN STREET).

surname string

Personal surname (RDN SN).

title string

Title (RDN T or TITLE).

userId string

User ID (RDN UID).

common_name str

Common name or fully-qualified domain name (RDN CN).

country str

Country name (RDN C).

distinguished_name_qualifier str

Distinguished name qualifier(RDN DNQ).

domain_component str

Domain component (RDN DC).

generation_qualifier str

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

given_name str

Personal given name (RDN G or GN).

initials str

Personal initials.

locality_name str

Locality (RDN L).

organization str

Organization (RDN O).

organizational_unit str

Organizational unit (RDN OU).

pseudonym str

Subject pseudonym.

serial_number str

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

state_or_province_name str

State or province name (RDN ST or S).

street str

Street address (RDN STREET).

surname str

Personal surname (RDN SN).

title str

Title (RDN T or TITLE).

user_id str

User ID (RDN UID).

commonName String

Common name or fully-qualified domain name (RDN CN).

country String

Country name (RDN C).

distinguishedNameQualifier String

Distinguished name qualifier(RDN DNQ).

domainComponent String

Domain component (RDN DC).

generationQualifier String

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName String

Personal given name (RDN G or GN).

initials String

Personal initials.

localityName String

Locality (RDN L).

organization String

Organization (RDN O).

organizationalUnit String

Organizational unit (RDN OU).

pseudonym String

Subject pseudonym.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName String

State or province name (RDN ST or S).

street String

Street address (RDN STREET).

surname String

Personal surname (RDN SN).

title String

Title (RDN T or TITLE).

userId String

User ID (RDN UID).

CertificateAuthorityCertificateAuthorityConfigValidity

TimeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore String

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_after str

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_before str

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore String

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityCertificateAuthorityRule

RuleType string

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

CertificateAuthorityMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

LeafCertificateMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

RuleType string

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

CertificateAuthorityMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

LeafCertificateMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType String

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

certificateAuthorityMaxValidityDuration String

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

leafCertificateMaxValidityDuration String

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType string

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

certificateAuthorityMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

leafCertificateMaxValidityDuration string

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

rule_type str

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

certificate_authority_max_validity_duration str

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

leaf_certificate_max_validity_duration str

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

ruleType String

(Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.

certificateAuthorityMaxValidityDuration String

(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.

leafCertificateMaxValidityDuration String

(Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.

CertificateAuthorityCertificateRevocationListDetails

ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

CustomFormattedUrls List<string>

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

ObjectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

CustomFormattedUrls []string

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

customFormattedUrls List<String>

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

customFormattedUrls string[]

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

object_storage_config CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

custom_formatted_urls Sequence[str]

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageConfig Property Map

(Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

customFormattedUrls List<String>

(Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig

ObjectStorageBucketName string

(Updatable) The name of the bucket where the CRL is stored.

ObjectStorageObjectNameFormat string

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

ObjectStorageNamespace string

(Updatable) The tenancy of the bucket where the CRL is stored.

ObjectStorageBucketName string

(Updatable) The name of the bucket where the CRL is stored.

ObjectStorageObjectNameFormat string

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

ObjectStorageNamespace string

(Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName String

(Updatable) The name of the bucket where the CRL is stored.

objectStorageObjectNameFormat String

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageNamespace String

(Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName string

(Updatable) The name of the bucket where the CRL is stored.

objectStorageObjectNameFormat string

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageNamespace string

(Updatable) The tenancy of the bucket where the CRL is stored.

object_storage_bucket_name str

(Updatable) The name of the bucket where the CRL is stored.

object_storage_object_name_format str

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

object_storage_namespace str

(Updatable) The tenancy of the bucket where the CRL is stored.

objectStorageBucketName String

(Updatable) The name of the bucket where the CRL is stored.

objectStorageObjectNameFormat String

(Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

objectStorageNamespace String

(Updatable) The tenancy of the bucket where the CRL is stored.

CertificateAuthorityCurrentVersion

CertificateAuthorityId string

The OCID of the CA.

IssuerCaVersionNumber string

The version number of the issuing CA.

RevocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>

The current revocation status of the entity.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

Stages List<string>

A list of rotation states for this CA version.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Validities List<CertificateAuthorityCurrentVersionValidity>

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

VersionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

VersionNumber string

The version number of the CA.

CertificateAuthorityId string

The OCID of the CA.

IssuerCaVersionNumber string

The version number of the issuing CA.

RevocationStatuses []CertificateAuthorityCurrentVersionRevocationStatus

The current revocation status of the entity.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

Stages []string

A list of rotation states for this CA version.

TimeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

Validities []CertificateAuthorityCurrentVersionValidity

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

VersionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

VersionNumber string

The version number of the CA.

certificateAuthorityId String

The OCID of the CA.

issuerCaVersionNumber String

The version number of the issuing CA.

revocationStatuses List<CertificateAuthorityCurrentVersionRevocationStatus>

The current revocation status of the entity.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stages List<String>

A list of rotation states for this CA version.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

validities List<CertificateAuthorityCurrentVersionValidity>

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName String

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

versionNumber String

The version number of the CA.

certificateAuthorityId string

The OCID of the CA.

issuerCaVersionNumber string

The version number of the issuing CA.

revocationStatuses CertificateAuthorityCurrentVersionRevocationStatus[]

The current revocation status of the entity.

serialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stages string[]

A list of rotation states for this CA version.

timeCreated string

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion string

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

validities CertificateAuthorityCurrentVersionValidity[]

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName string

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

versionNumber string

The version number of the CA.

certificate_authority_id str

The OCID of the CA.

issuer_ca_version_number str

The version number of the issuing CA.

revocation_statuses CertificateAuthorityCurrentVersionRevocationStatus]

The current revocation status of the entity.

serial_number str

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stages Sequence[str]

A list of rotation states for this CA version.

time_created str

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_deletion str

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

validities CertificateAuthorityCurrentVersionValidity]

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

version_name str

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

version_number str

The version number of the CA.

certificateAuthorityId String

The OCID of the CA.

issuerCaVersionNumber String

The version number of the issuing CA.

revocationStatuses List<Property Map>

The current revocation status of the entity.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stages List<String>

A list of rotation states for this CA version.

timeCreated String

A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfDeletion String

An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

validities List<Property Map>

(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.

versionName String

(Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.

versionNumber String

The version number of the CA.

CertificateAuthorityCurrentVersionRevocationStatus

RevocationReason string

The reason the certificate or certificate authority (CA) was revoked.

TimeOfRevocation string

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

RevocationReason string

The reason the certificate or certificate authority (CA) was revoked.

TimeOfRevocation string

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason String

The reason the certificate or certificate authority (CA) was revoked.

timeOfRevocation String

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason string

The reason the certificate or certificate authority (CA) was revoked.

timeOfRevocation string

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocation_reason str

The reason the certificate or certificate authority (CA) was revoked.

time_of_revocation str

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

revocationReason String

The reason the certificate or certificate authority (CA) was revoked.

timeOfRevocation String

The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthorityCurrentVersionValidity

TimeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

TimeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore String

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter string

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore string

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_after str

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

time_of_validity_not_before str

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotAfter String

(Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

timeOfValidityNotBefore String

(Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

CertificateAuthoritySubject

CommonName string

Common name or fully-qualified domain name (RDN CN).

Country string

Country name (RDN C).

DistinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

DomainComponent string

Domain component (RDN DC).

GenerationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

GivenName string

Personal given name (RDN G or GN).

Initials string

Personal initials.

LocalityName string

Locality (RDN L).

Organization string

Organization (RDN O).

OrganizationalUnit string

Organizational unit (RDN OU).

Pseudonym string

Subject pseudonym.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

StateOrProvinceName string

State or province name (RDN ST or S).

Street string

Street address (RDN STREET).

Surname string

Personal surname (RDN SN).

Title string

Title (RDN T or TITLE).

UserId string

User ID (RDN UID).

CommonName string

Common name or fully-qualified domain name (RDN CN).

Country string

Country name (RDN C).

DistinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

DomainComponent string

Domain component (RDN DC).

GenerationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

GivenName string

Personal given name (RDN G or GN).

Initials string

Personal initials.

LocalityName string

Locality (RDN L).

Organization string

Organization (RDN O).

OrganizationalUnit string

Organizational unit (RDN OU).

Pseudonym string

Subject pseudonym.

SerialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

StateOrProvinceName string

State or province name (RDN ST or S).

Street string

Street address (RDN STREET).

Surname string

Personal surname (RDN SN).

Title string

Title (RDN T or TITLE).

UserId string

User ID (RDN UID).

commonName String

Common name or fully-qualified domain name (RDN CN).

country String

Country name (RDN C).

distinguishedNameQualifier String

Distinguished name qualifier(RDN DNQ).

domainComponent String

Domain component (RDN DC).

generationQualifier String

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName String

Personal given name (RDN G or GN).

initials String

Personal initials.

localityName String

Locality (RDN L).

organization String

Organization (RDN O).

organizationalUnit String

Organizational unit (RDN OU).

pseudonym String

Subject pseudonym.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName String

State or province name (RDN ST or S).

street String

Street address (RDN STREET).

surname String

Personal surname (RDN SN).

title String

Title (RDN T or TITLE).

userId String

User ID (RDN UID).

commonName string

Common name or fully-qualified domain name (RDN CN).

country string

Country name (RDN C).

distinguishedNameQualifier string

Distinguished name qualifier(RDN DNQ).

domainComponent string

Domain component (RDN DC).

generationQualifier string

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName string

Personal given name (RDN G or GN).

initials string

Personal initials.

localityName string

Locality (RDN L).

organization string

Organization (RDN O).

organizationalUnit string

Organizational unit (RDN OU).

pseudonym string

Subject pseudonym.

serialNumber string

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName string

State or province name (RDN ST or S).

street string

Street address (RDN STREET).

surname string

Personal surname (RDN SN).

title string

Title (RDN T or TITLE).

userId string

User ID (RDN UID).

common_name str

Common name or fully-qualified domain name (RDN CN).

country str

Country name (RDN C).

distinguished_name_qualifier str

Distinguished name qualifier(RDN DNQ).

domain_component str

Domain component (RDN DC).

generation_qualifier str

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

given_name str

Personal given name (RDN G or GN).

initials str

Personal initials.

locality_name str

Locality (RDN L).

organization str

Organization (RDN O).

organizational_unit str

Organizational unit (RDN OU).

pseudonym str

Subject pseudonym.

serial_number str

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

state_or_province_name str

State or province name (RDN ST or S).

street str

Street address (RDN STREET).

surname str

Personal surname (RDN SN).

title str

Title (RDN T or TITLE).

user_id str

User ID (RDN UID).

commonName String

Common name or fully-qualified domain name (RDN CN).

country String

Country name (RDN C).

distinguishedNameQualifier String

Distinguished name qualifier(RDN DNQ).

domainComponent String

Domain component (RDN DC).

generationQualifier String

Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).

givenName String

Personal given name (RDN G or GN).

initials String

Personal initials.

localityName String

Locality (RDN L).

organization String

Organization (RDN O).

organizationalUnit String

Organizational unit (RDN OU).

pseudonym String

Subject pseudonym.

serialNumber String

Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).

stateOrProvinceName String

State or province name (RDN ST or S).

street String

Street address (RDN STREET).

surname String

Personal surname (RDN SN).

title String

Title (RDN T or TITLE).

userId String

User ID (RDN UID).

Import

CertificateAuthorities can be imported using the id, e.g.

 $ pulumi import oci:CertificatesManagement/certificateAuthority:CertificateAuthority test_certificate_authority "id"

Package Details

Repository
https://github.com/pulumi/pulumi-oci
License
Apache-2.0
Notes

This Pulumi package is based on the oci Terraform Provider.