DomainEndpointOptions - Amazon OpenSearch Service

DomainEndpointOptions

Options to configure a custom endpoint for an OpenSearch Service domain.

Contents

CustomEndpoint

The fully qualified URL for the custom endpoint.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 255.

Pattern: ^(((?!-)[A-Za-z0-9-]{0,62}[A-Za-z0-9])\.)+((?!-)[A-Za-z0-9-]{1,62}[A-Za-z0-9])$

Required: No

CustomEndpointCertificateArn

The ARN for your security certificate, managed in AWS Certificate Manager (ACM).

Type: String

Length Constraints: Minimum length of 20. Maximum length of 2048.

Pattern: .*

Required: No

CustomEndpointEnabled

Whether to enable a custom endpoint for the domain.

Type: Boolean

Required: No

EnforceHTTPS

True to require that all traffic to the domain arrive over HTTPS.

Type: Boolean

Required: No

TLSSecurityPolicy

Specify the TLS security policy to apply to the HTTPS endpoint of the domain. The policy can be one of the following values:

  • Policy-Min-TLS-1-0-2019-07: TLS security policy that supports TLS version 1.0 to TLS version 1.2

  • Policy-Min-TLS-1-2-2019-07: TLS security policy that supports only TLS version 1.2

  • Policy-Min-TLS-1-2-PFS-2023-10: TLS security policy that supports TLS version 1.2 to TLS version 1.3 with perfect forward secrecy cipher suites

Type: String

Valid Values: Policy-Min-TLS-1-0-2019-07 | Policy-Min-TLS-1-2-2019-07 | Policy-Min-TLS-1-2-PFS-2023-10

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: