oci.CertificatesManagement.CertificateAuthority
Explore with Pulumi AI
This resource provides the Certificate Authority resource in Oracle Cloud Infrastructure Certificates Management service.
Creates a new certificate authority (CA) according to the details of the request.
Create CertificateAuthority Resource
new CertificateAuthority(name: string, args: CertificateAuthorityArgs, opts?: CustomResourceOptions);
@overload
def CertificateAuthority(resource_name: str,
opts: Optional[ResourceOptions] = None,
certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
compartment_id: Optional[str] = None,
defined_tags: Optional[Mapping[str, Any]] = None,
description: Optional[str] = None,
freeform_tags: Optional[Mapping[str, Any]] = None,
kms_key_id: Optional[str] = None,
name: Optional[str] = None)
@overload
def CertificateAuthority(resource_name: str,
args: CertificateAuthorityArgs,
opts: Optional[ResourceOptions] = None)
func NewCertificateAuthority(ctx *Context, name string, args CertificateAuthorityArgs, opts ...ResourceOption) (*CertificateAuthority, error)
public CertificateAuthority(string name, CertificateAuthorityArgs args, CustomResourceOptions? opts = null)
public CertificateAuthority(String name, CertificateAuthorityArgs args)
public CertificateAuthority(String name, CertificateAuthorityArgs args, CustomResourceOptions options)
type: oci:CertificatesManagement:CertificateAuthority
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CertificateAuthorityArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CertificateAuthorityArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CertificateAuthorityArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CertificateAuthorityArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CertificateAuthorityArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
CertificateAuthority Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The CertificateAuthority resource accepts the following input properties:
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- Compartment
Id string (Updatable) The compartment in which you want to create the CA.
- Kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- List<Certificate
Authority Certificate Authority Rule> (Updatable) A list of rules that control how the CA is used and managed.
- Certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- Dictionary<string, object>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- Description string
(Updatable) A brief description of the CA.
- Dictionary<string, object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Certificate
Authority Certificate Authority Config Args (Updatable) The configuration details for creating a certificate authority (CA).
- Compartment
Id string (Updatable) The compartment in which you want to create the CA.
- Kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- []Certificate
Authority Certificate Authority Rule Args (Updatable) A list of rules that control how the CA is used and managed.
- Certificate
Revocation CertificateList Details Authority Certificate Revocation List Details Args (Updatable) The details of the certificate revocation list (CRL).
- map[string]interface{}
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- Description string
(Updatable) A brief description of the CA.
- map[string]interface{}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- Name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- compartment
Id String (Updatable) The compartment in which you want to create the CA.
- kms
Key StringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- List<Certificate
Authority Certificate Authority Rule> (Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- Map<String,Object>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description String
(Updatable) A brief description of the CA.
- Map<String,Object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- name String
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- compartment
Id string (Updatable) The compartment in which you want to create the CA.
- kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- Certificate
Authority Certificate Authority Rule[] (Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- {[key: string]: any}
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description string
(Updatable) A brief description of the CA.
- {[key: string]: any}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Certificate
Authority Certificate Authority Config Args (Updatable) The configuration details for creating a certificate authority (CA).
- compartment_
id str (Updatable) The compartment in which you want to create the CA.
- kms_
key_ strid The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- Certificate
Authority Certificate Authority Rule Args] (Updatable) A list of rules that control how the CA is used and managed.
- certificate_
revocation_ Certificatelist_ details Authority Certificate Revocation List Details Args (Updatable) The details of the certificate revocation list (CRL).
- Mapping[str, Any]
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description str
(Updatable) A brief description of the CA.
- Mapping[str, Any]
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- name str
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Property Map
(Updatable) The configuration details for creating a certificate authority (CA).
- compartment
Id String (Updatable) The compartment in which you want to create the CA.
- kms
Key StringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- List<Property Map>
(Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation Property MapList Details (Updatable) The details of the certificate revocation list (CRL).
- Map<Any>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description String
(Updatable) A brief description of the CA.
- Map<Any>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- name String
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
Outputs
All input properties are implicitly available as output properties. Additionally, the CertificateAuthority resource produces the following output properties:
- Config
Type string (Updatable) The origin of the CA.
- Current
Versions List<CertificateAuthority Current Version> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Id string
The provider-assigned unique ID for this managed resource.
- string
The OCID of the private CA.
- Lifecycle
Details string Additional information about the current CA lifecycle state.
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- State string
The current lifecycle state of the certificate authority.
- Subjects
List<Certificate
Authority Subject> The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Config
Type string (Updatable) The origin of the CA.
- Current
Versions []CertificateAuthority Current Version The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Id string
The provider-assigned unique ID for this managed resource.
- string
The OCID of the private CA.
- Lifecycle
Details string Additional information about the current CA lifecycle state.
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- State string
The current lifecycle state of the certificate authority.
- Subjects
[]Certificate
Authority Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- config
Type String (Updatable) The origin of the CA.
- current
Versions List<CertificateAuthority Current Version> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- id String
The provider-assigned unique ID for this managed resource.
- String
The OCID of the private CA.
- lifecycle
Details String Additional information about the current CA lifecycle state.
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- state String
The current lifecycle state of the certificate authority.
- subjects
List<Certificate
Authority Subject> The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- config
Type string (Updatable) The origin of the CA.
- current
Versions CertificateAuthority Current Version[] The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- id string
The provider-assigned unique ID for this managed resource.
- string
The OCID of the private CA.
- lifecycle
Details string Additional information about the current CA lifecycle state.
- signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- state string
The current lifecycle state of the certificate authority.
- subjects
Certificate
Authority Subject[] The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- config_
type str (Updatable) The origin of the CA.
- current_
versions CertificateAuthority Current Version] The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- id str
The provider-assigned unique ID for this managed resource.
- str
The OCID of the private CA.
- lifecycle_
details str Additional information about the current CA lifecycle state.
- signing_
algorithm str The algorithm used to sign public key certificates that the CA issues.
- state str
The current lifecycle state of the certificate authority.
- subjects
Certificate
Authority Subject] The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time_
created str A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strdeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- config
Type String (Updatable) The origin of the CA.
- current
Versions List<Property Map> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- id String
The provider-assigned unique ID for this managed resource.
- String
The OCID of the private CA.
- lifecycle
Details String Additional information about the current CA lifecycle state.
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- state String
The current lifecycle state of the certificate authority.
- subjects List<Property Map>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
Look up Existing CertificateAuthority Resource
Get an existing CertificateAuthority resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CertificateAuthorityState, opts?: CustomResourceOptions): CertificateAuthority
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
certificate_authority_config: Optional[_certificatesmanagement.CertificateAuthorityCertificateAuthorityConfigArgs] = None,
certificate_authority_rules: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCertificateAuthorityRuleArgs]] = None,
certificate_revocation_list_details: Optional[_certificatesmanagement.CertificateAuthorityCertificateRevocationListDetailsArgs] = None,
compartment_id: Optional[str] = None,
config_type: Optional[str] = None,
current_versions: Optional[Sequence[_certificatesmanagement.CertificateAuthorityCurrentVersionArgs]] = None,
defined_tags: Optional[Mapping[str, Any]] = None,
description: Optional[str] = None,
freeform_tags: Optional[Mapping[str, Any]] = None,
issuer_certificate_authority_id: Optional[str] = None,
kms_key_id: Optional[str] = None,
lifecycle_details: Optional[str] = None,
name: Optional[str] = None,
signing_algorithm: Optional[str] = None,
state: Optional[str] = None,
subjects: Optional[Sequence[_certificatesmanagement.CertificateAuthoritySubjectArgs]] = None,
time_created: Optional[str] = None,
time_of_deletion: Optional[str] = None) -> CertificateAuthority
func GetCertificateAuthority(ctx *Context, name string, id IDInput, state *CertificateAuthorityState, opts ...ResourceOption) (*CertificateAuthority, error)
public static CertificateAuthority Get(string name, Input<string> id, CertificateAuthorityState? state, CustomResourceOptions? opts = null)
public static CertificateAuthority get(String name, Output<String> id, CertificateAuthorityState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- List<Certificate
Authority Certificate Authority Rule> (Updatable) A list of rules that control how the CA is used and managed.
- Certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- Compartment
Id string (Updatable) The compartment in which you want to create the CA.
- Config
Type string (Updatable) The origin of the CA.
- Current
Versions List<CertificateAuthority Current Version> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Dictionary<string, object>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- Description string
(Updatable) A brief description of the CA.
- Dictionary<string, object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- string
The OCID of the private CA.
- Kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- Lifecycle
Details string Additional information about the current CA lifecycle state.
- Name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- State string
The current lifecycle state of the certificate authority.
- Subjects
List<Certificate
Authority Subject> The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Certificate
Authority Certificate Authority Config Args (Updatable) The configuration details for creating a certificate authority (CA).
- []Certificate
Authority Certificate Authority Rule Args (Updatable) A list of rules that control how the CA is used and managed.
- Certificate
Revocation CertificateList Details Authority Certificate Revocation List Details Args (Updatable) The details of the certificate revocation list (CRL).
- Compartment
Id string (Updatable) The compartment in which you want to create the CA.
- Config
Type string (Updatable) The origin of the CA.
- Current
Versions []CertificateAuthority Current Version Args The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- map[string]interface{}
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- Description string
(Updatable) A brief description of the CA.
- map[string]interface{}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- string
The OCID of the private CA.
- Kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- Lifecycle
Details string Additional information about the current CA lifecycle state.
- Name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- State string
The current lifecycle state of the certificate authority.
- Subjects
[]Certificate
Authority Subject Args The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- List<Certificate
Authority Certificate Authority Rule> (Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- compartment
Id String (Updatable) The compartment in which you want to create the CA.
- config
Type String (Updatable) The origin of the CA.
- current
Versions List<CertificateAuthority Current Version> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Map<String,Object>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description String
(Updatable) A brief description of the CA.
- Map<String,Object>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- String
The OCID of the private CA.
- kms
Key StringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- lifecycle
Details String Additional information about the current CA lifecycle state.
- name String
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- state String
The current lifecycle state of the certificate authority.
- subjects
List<Certificate
Authority Subject> The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Certificate
Authority Certificate Authority Config (Updatable) The configuration details for creating a certificate authority (CA).
- Certificate
Authority Certificate Authority Rule[] (Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation CertificateList Details Authority Certificate Revocation List Details (Updatable) The details of the certificate revocation list (CRL).
- compartment
Id string (Updatable) The compartment in which you want to create the CA.
- config
Type string (Updatable) The origin of the CA.
- current
Versions CertificateAuthority Current Version[] The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- {[key: string]: any}
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description string
(Updatable) A brief description of the CA.
- {[key: string]: any}
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- string
The OCID of the private CA.
- kms
Key stringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- lifecycle
Details string Additional information about the current CA lifecycle state.
- name string
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- state string
The current lifecycle state of the certificate authority.
- subjects
Certificate
Authority Subject[] The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Certificate
Authority Certificate Authority Config Args (Updatable) The configuration details for creating a certificate authority (CA).
- Certificate
Authority Certificate Authority Rule Args] (Updatable) A list of rules that control how the CA is used and managed.
- certificate_
revocation_ Certificatelist_ details Authority Certificate Revocation List Details Args (Updatable) The details of the certificate revocation list (CRL).
- compartment_
id str (Updatable) The compartment in which you want to create the CA.
- config_
type str (Updatable) The origin of the CA.
- current_
versions CertificateAuthority Current Version Args] The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Mapping[str, Any]
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description str
(Updatable) A brief description of the CA.
- Mapping[str, Any]
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- str
The OCID of the private CA.
- kms_
key_ strid The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- lifecycle_
details str Additional information about the current CA lifecycle state.
- name str
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- signing_
algorithm str The algorithm used to sign public key certificates that the CA issues.
- state str
The current lifecycle state of the certificate authority.
- subjects
Certificate
Authority Subject Args] The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time_
created str A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strdeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Property Map
(Updatable) The configuration details for creating a certificate authority (CA).
- List<Property Map>
(Updatable) A list of rules that control how the CA is used and managed.
- certificate
Revocation Property MapList Details (Updatable) The details of the certificate revocation list (CRL).
- compartment
Id String (Updatable) The compartment in which you want to create the CA.
- config
Type String (Updatable) The origin of the CA.
- current
Versions List<Property Map> The metadata details of the certificate authority (CA) version. This summary object does not contain the CA contents.
- Map<Any>
(Updatable) Usage of predefined tag keys. These predefined keys are scoped to namespaces. Example:
{"foo-namespace.bar-key": "value"}
- description String
(Updatable) A brief description of the CA.
- Map<Any>
(Updatable) Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example:
{"bar-key": "value"}
- String
The OCID of the private CA.
- kms
Key StringId The OCID of the Oracle Cloud Infrastructure Vault key used to encrypt the CA.
- lifecycle
Details String Additional information about the current CA lifecycle state.
- name String
A user-friendly name for the CA. Names are unique within a compartment. Avoid entering confidential information. Valid characters include uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- state String
The current lifecycle state of the certificate authority.
- subjects List<Property Map>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
Supporting Types
CertificateAuthorityCertificateAuthorityConfig, CertificateAuthorityCertificateAuthorityConfigArgs
- Config
Type string (Updatable) The origin of the CA.
- Subject
Certificate
Authority Certificate Authority Config Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- string
The OCID of the private CA.
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- Validity
Certificate
Authority Certificate Authority Config Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- Version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- Config
Type string (Updatable) The origin of the CA.
- Subject
Certificate
Authority Certificate Authority Config Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- string
The OCID of the private CA.
- Signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- Validity
Certificate
Authority Certificate Authority Config Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- Version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- config
Type String (Updatable) The origin of the CA.
- subject
Certificate
Authority Certificate Authority Config Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- String
The OCID of the private CA.
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- validity
Certificate
Authority Certificate Authority Config Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name String (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- config
Type string (Updatable) The origin of the CA.
- subject
Certificate
Authority Certificate Authority Config Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- string
The OCID of the private CA.
- signing
Algorithm string The algorithm used to sign public key certificates that the CA issues.
- validity
Certificate
Authority Certificate Authority Config Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- config_
type str (Updatable) The origin of the CA.
- subject
Certificate
Authority Certificate Authority Config Subject The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- str
The OCID of the private CA.
- signing_
algorithm str The algorithm used to sign public key certificates that the CA issues.
- validity
Certificate
Authority Certificate Authority Config Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version_
name str (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- config
Type String (Updatable) The origin of the CA.
- subject Property Map
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
- String
The OCID of the private CA.
- signing
Algorithm String The algorithm used to sign public key certificates that the CA issues.
- validity Property Map
(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name String (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
CertificateAuthorityCertificateAuthorityConfigSubject, CertificateAuthorityCertificateAuthorityConfigSubjectArgs
- Common
Name string Common name or fully-qualified domain name (RDN CN).
- Country string
Country name (RDN C).
- Distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- Domain
Component string Domain component (RDN DC).
- Generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- Given
Name string Personal given name (RDN G or GN).
- Initials string
Personal initials.
- Locality
Name string Locality (RDN L).
- Organization string
Organization (RDN O).
- Organizational
Unit string Organizational unit (RDN OU).
- Pseudonym string
Subject pseudonym.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- State
Or stringProvince Name State or province name (RDN ST or S).
- Street string
Street address (RDN STREET).
- Surname string
Personal surname (RDN SN).
- Title string
Title (RDN T or TITLE).
- User
Id string User ID (RDN UID).
- Common
Name string Common name or fully-qualified domain name (RDN CN).
- Country string
Country name (RDN C).
- Distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- Domain
Component string Domain component (RDN DC).
- Generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- Given
Name string Personal given name (RDN G or GN).
- Initials string
Personal initials.
- Locality
Name string Locality (RDN L).
- Organization string
Organization (RDN O).
- Organizational
Unit string Organizational unit (RDN OU).
- Pseudonym string
Subject pseudonym.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- State
Or stringProvince Name State or province name (RDN ST or S).
- Street string
Street address (RDN STREET).
- Surname string
Personal surname (RDN SN).
- Title string
Title (RDN T or TITLE).
- User
Id string User ID (RDN UID).
- common
Name String Common name or fully-qualified domain name (RDN CN).
- country String
Country name (RDN C).
- distinguished
Name StringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component String Domain component (RDN DC).
- generation
Qualifier String Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name String Personal given name (RDN G or GN).
- initials String
Personal initials.
- locality
Name String Locality (RDN L).
- organization String
Organization (RDN O).
- organizational
Unit String Organizational unit (RDN OU).
- pseudonym String
Subject pseudonym.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or StringProvince Name State or province name (RDN ST or S).
- street String
Street address (RDN STREET).
- surname String
Personal surname (RDN SN).
- title String
Title (RDN T or TITLE).
- user
Id String User ID (RDN UID).
- common
Name string Common name or fully-qualified domain name (RDN CN).
- country string
Country name (RDN C).
- distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component string Domain component (RDN DC).
- generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name string Personal given name (RDN G or GN).
- initials string
Personal initials.
- locality
Name string Locality (RDN L).
- organization string
Organization (RDN O).
- organizational
Unit string Organizational unit (RDN OU).
- pseudonym string
Subject pseudonym.
- serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or stringProvince Name State or province name (RDN ST or S).
- street string
Street address (RDN STREET).
- surname string
Personal surname (RDN SN).
- title string
Title (RDN T or TITLE).
- user
Id string User ID (RDN UID).
- common_
name str Common name or fully-qualified domain name (RDN CN).
- country str
Country name (RDN C).
- distinguished_
name_ strqualifier Distinguished name qualifier(RDN DNQ).
- domain_
component str Domain component (RDN DC).
- generation_
qualifier str Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given_
name str Personal given name (RDN G or GN).
- initials str
Personal initials.
- locality_
name str Locality (RDN L).
- organization str
Organization (RDN O).
- organizational_
unit str Organizational unit (RDN OU).
- pseudonym str
Subject pseudonym.
- serial_
number str Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state_
or_ strprovince_ name State or province name (RDN ST or S).
- street str
Street address (RDN STREET).
- surname str
Personal surname (RDN SN).
- title str
Title (RDN T or TITLE).
- user_
id str User ID (RDN UID).
- common
Name String Common name or fully-qualified domain name (RDN CN).
- country String
Country name (RDN C).
- distinguished
Name StringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component String Domain component (RDN DC).
- generation
Qualifier String Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name String Personal given name (RDN G or GN).
- initials String
Personal initials.
- locality
Name String Locality (RDN L).
- organization String
Organization (RDN O).
- organizational
Unit String Organizational unit (RDN OU).
- pseudonym String
Subject pseudonym.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or StringProvince Name State or province name (RDN ST or S).
- street String
Street address (RDN STREET).
- surname String
Personal surname (RDN SN).
- title String
Title (RDN T or TITLE).
- user
Id String User ID (RDN UID).
CertificateAuthorityCertificateAuthorityConfigValidity, CertificateAuthorityCertificateAuthorityConfigValidityArgs
- Time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strvalidity_ not_ after (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strvalidity_ not_ before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
CertificateAuthorityCertificateAuthorityRule, CertificateAuthorityCertificateAuthorityRuleArgs
- Rule
Type string (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- string
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- Leaf
Certificate stringMax Validity Duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
- Rule
Type string (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- string
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- Leaf
Certificate stringMax Validity Duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
- rule
Type String (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- String
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- leaf
Certificate StringMax Validity Duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
- rule
Type string (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- string
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- leaf
Certificate stringMax Validity Duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
- rule_
type str (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- str
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- leaf_
certificate_ strmax_ validity_ duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
- rule
Type String (Updatable) The type of rule, whether a renewal rule regarding when to renew the CA or an issuance expiry rule that governs how long the certificates and CAs issued by the CA are valid. (For internal use only) An internal issuance rule defines the number and type of certificates that the CA can issue.
- String
(Updatable) A property indicating the maximum validity duration, in days, of subordinate CA's issued by this CA. Expressed in ISO 8601 format.
- leaf
Certificate StringMax Validity Duration (Updatable) A property indicating the maximum validity duration, in days, of leaf certificates issued by this CA. Expressed in ISO 8601 format.
CertificateAuthorityCertificateRevocationListDetails, CertificateAuthorityCertificateRevocationListDetailsArgs
- Object
Storage CertificateConfig Authority Certificate Revocation List Details Object Storage Config (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- Custom
Formatted List<string>Urls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- Object
Storage CertificateConfig Authority Certificate Revocation List Details Object Storage Config (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- Custom
Formatted []stringUrls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage CertificateConfig Authority Certificate Revocation List Details Object Storage Config (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- custom
Formatted List<String>Urls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage CertificateConfig Authority Certificate Revocation List Details Object Storage Config (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- custom
Formatted string[]Urls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object_
storage_ Certificateconfig Authority Certificate Revocation List Details Object Storage Config (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- custom_
formatted_ Sequence[str]urls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage Property MapConfig (Updatable) The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
- custom
Formatted List<String>Urls (Updatable) Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfig, CertificateAuthorityCertificateRevocationListDetailsObjectStorageConfigArgs
- Object
Storage stringBucket Name (Updatable) The name of the bucket where the CRL is stored.
- Object
Storage stringObject Name Format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- Object
Storage stringNamespace (Updatable) The tenancy of the bucket where the CRL is stored.
- Object
Storage stringBucket Name (Updatable) The name of the bucket where the CRL is stored.
- Object
Storage stringObject Name Format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- Object
Storage stringNamespace (Updatable) The tenancy of the bucket where the CRL is stored.
- object
Storage StringBucket Name (Updatable) The name of the bucket where the CRL is stored.
- object
Storage StringObject Name Format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage StringNamespace (Updatable) The tenancy of the bucket where the CRL is stored.
- object
Storage stringBucket Name (Updatable) The name of the bucket where the CRL is stored.
- object
Storage stringObject Name Format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage stringNamespace (Updatable) The tenancy of the bucket where the CRL is stored.
- object_
storage_ strbucket_ name (Updatable) The name of the bucket where the CRL is stored.
- object_
storage_ strobject_ name_ format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object_
storage_ strnamespace (Updatable) The tenancy of the bucket where the CRL is stored.
- object
Storage StringBucket Name (Updatable) The name of the bucket where the CRL is stored.
- object
Storage StringObject Name Format (Updatable) The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
- object
Storage StringNamespace (Updatable) The tenancy of the bucket where the CRL is stored.
CertificateAuthorityCurrentVersion, CertificateAuthorityCurrentVersionArgs
- string
The OCID of the CA.
- Issuer
Ca stringVersion Number The version number of the issuing CA.
- Revocation
Statuses List<CertificateAuthority Current Version Revocation Status> The current revocation status of the entity.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- Stages List<string>
A list of rotation states for this CA version.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Validities
List<Certificate
Authority Current Version Validity> (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- Version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- Version
Number string The version number of the CA.
- string
The OCID of the CA.
- Issuer
Ca stringVersion Number The version number of the issuing CA.
- Revocation
Statuses []CertificateAuthority Current Version Revocation Status The current revocation status of the entity.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- Stages []string
A list of rotation states for this CA version.
- Time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Validities
[]Certificate
Authority Current Version Validity (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- Version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- Version
Number string The version number of the CA.
- String
The OCID of the CA.
- issuer
Ca StringVersion Number The version number of the issuing CA.
- revocation
Statuses List<CertificateAuthority Current Version Revocation Status> The current revocation status of the entity.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- stages List<String>
A list of rotation states for this CA version.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- validities
List<Certificate
Authority Current Version Validity> (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name String (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- version
Number String The version number of the CA.
- string
The OCID of the CA.
- issuer
Ca stringVersion Number The version number of the issuing CA.
- revocation
Statuses CertificateAuthority Current Version Revocation Status[] The current revocation status of the entity.
- serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- stages string[]
A list of rotation states for this CA version.
- time
Created string A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- validities
Certificate
Authority Current Version Validity[] (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name string (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- version
Number string The version number of the CA.
- str
The OCID of the CA.
- issuer_
ca_ strversion_ number The version number of the issuing CA.
- revocation_
statuses CertificateAuthority Current Version Revocation Status] The current revocation status of the entity.
- serial_
number str Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- stages Sequence[str]
A list of rotation states for this CA version.
- time_
created str A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strdeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- validities
Certificate
Authority Current Version Validity] (Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version_
name str (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- version_
number str The version number of the CA.
- String
The OCID of the CA.
- issuer
Ca StringVersion Number The version number of the issuing CA.
- revocation
Statuses List<Property Map> The current revocation status of the entity.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- stages List<String>
A list of rotation states for this CA version.
- time
Created String A property indicating when the CA was created, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringDeletion An optional property indicating when to delete the CA version, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- validities List<Property Map>
(Updatable) An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
- version
Name String (Updatable) The name of the CA version. When the value is not null, a name is unique across versions of a given CA.
- version
Number String The version number of the CA.
CertificateAuthorityCurrentVersionRevocationStatus, CertificateAuthorityCurrentVersionRevocationStatusArgs
- Revocation
Reason string The reason the certificate or certificate authority (CA) was revoked.
- Time
Of stringRevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Revocation
Reason string The reason the certificate or certificate authority (CA) was revoked.
- Time
Of stringRevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- revocation
Reason String The reason the certificate or certificate authority (CA) was revoked.
- time
Of StringRevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- revocation
Reason string The reason the certificate or certificate authority (CA) was revoked.
- time
Of stringRevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- revocation_
reason str The reason the certificate or certificate authority (CA) was revoked.
- time_
of_ strrevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- revocation
Reason String The reason the certificate or certificate authority (CA) was revoked.
- time
Of StringRevocation The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
CertificateAuthorityCurrentVersionValidity, CertificateAuthorityCurrentVersionValidityArgs
- Time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- Time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of stringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strvalidity_ not_ after (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time_
of_ strvalidity_ not_ before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not After (Updatable) The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
- time
Of StringValidity Not Before (Updatable) The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example:
2019-04-03T21:10:29.600Z
CertificateAuthoritySubject, CertificateAuthoritySubjectArgs
- Common
Name string Common name or fully-qualified domain name (RDN CN).
- Country string
Country name (RDN C).
- Distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- Domain
Component string Domain component (RDN DC).
- Generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- Given
Name string Personal given name (RDN G or GN).
- Initials string
Personal initials.
- Locality
Name string Locality (RDN L).
- Organization string
Organization (RDN O).
- Organizational
Unit string Organizational unit (RDN OU).
- Pseudonym string
Subject pseudonym.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- State
Or stringProvince Name State or province name (RDN ST or S).
- Street string
Street address (RDN STREET).
- Surname string
Personal surname (RDN SN).
- Title string
Title (RDN T or TITLE).
- User
Id string User ID (RDN UID).
- Common
Name string Common name or fully-qualified domain name (RDN CN).
- Country string
Country name (RDN C).
- Distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- Domain
Component string Domain component (RDN DC).
- Generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- Given
Name string Personal given name (RDN G or GN).
- Initials string
Personal initials.
- Locality
Name string Locality (RDN L).
- Organization string
Organization (RDN O).
- Organizational
Unit string Organizational unit (RDN OU).
- Pseudonym string
Subject pseudonym.
- Serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- State
Or stringProvince Name State or province name (RDN ST or S).
- Street string
Street address (RDN STREET).
- Surname string
Personal surname (RDN SN).
- Title string
Title (RDN T or TITLE).
- User
Id string User ID (RDN UID).
- common
Name String Common name or fully-qualified domain name (RDN CN).
- country String
Country name (RDN C).
- distinguished
Name StringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component String Domain component (RDN DC).
- generation
Qualifier String Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name String Personal given name (RDN G or GN).
- initials String
Personal initials.
- locality
Name String Locality (RDN L).
- organization String
Organization (RDN O).
- organizational
Unit String Organizational unit (RDN OU).
- pseudonym String
Subject pseudonym.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or StringProvince Name State or province name (RDN ST or S).
- street String
Street address (RDN STREET).
- surname String
Personal surname (RDN SN).
- title String
Title (RDN T or TITLE).
- user
Id String User ID (RDN UID).
- common
Name string Common name or fully-qualified domain name (RDN CN).
- country string
Country name (RDN C).
- distinguished
Name stringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component string Domain component (RDN DC).
- generation
Qualifier string Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name string Personal given name (RDN G or GN).
- initials string
Personal initials.
- locality
Name string Locality (RDN L).
- organization string
Organization (RDN O).
- organizational
Unit string Organizational unit (RDN OU).
- pseudonym string
Subject pseudonym.
- serial
Number string Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or stringProvince Name State or province name (RDN ST or S).
- street string
Street address (RDN STREET).
- surname string
Personal surname (RDN SN).
- title string
Title (RDN T or TITLE).
- user
Id string User ID (RDN UID).
- common_
name str Common name or fully-qualified domain name (RDN CN).
- country str
Country name (RDN C).
- distinguished_
name_ strqualifier Distinguished name qualifier(RDN DNQ).
- domain_
component str Domain component (RDN DC).
- generation_
qualifier str Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given_
name str Personal given name (RDN G or GN).
- initials str
Personal initials.
- locality_
name str Locality (RDN L).
- organization str
Organization (RDN O).
- organizational_
unit str Organizational unit (RDN OU).
- pseudonym str
Subject pseudonym.
- serial_
number str Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state_
or_ strprovince_ name State or province name (RDN ST or S).
- street str
Street address (RDN STREET).
- surname str
Personal surname (RDN SN).
- title str
Title (RDN T or TITLE).
- user_
id str User ID (RDN UID).
- common
Name String Common name or fully-qualified domain name (RDN CN).
- country String
Country name (RDN C).
- distinguished
Name StringQualifier Distinguished name qualifier(RDN DNQ).
- domain
Component String Domain component (RDN DC).
- generation
Qualifier String Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
- given
Name String Personal given name (RDN G or GN).
- initials String
Personal initials.
- locality
Name String Locality (RDN L).
- organization String
Organization (RDN O).
- organizational
Unit String Organizational unit (RDN OU).
- pseudonym String
Subject pseudonym.
- serial
Number String Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
- state
Or StringProvince Name State or province name (RDN ST or S).
- street String
Street address (RDN STREET).
- surname String
Personal surname (RDN SN).
- title String
Title (RDN T or TITLE).
- user
Id String User ID (RDN UID).
Import
CertificateAuthorities can be imported using the id
, e.g.
$ pulumi import oci:CertificatesManagement/certificateAuthority:CertificateAuthority test_certificate_authority "id"
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
oci
Terraform Provider.