AWS::ACMPCA::CertificateAuthorityActivation
The AWS::ACMPCA::CertificateAuthorityActivation resource creates and
installs a CA certificate on a CA. If no status is specified, the
AWS::ACMPCA::CertificateAuthorityActivation resource status defaults to
ACTIVE. Once the CA has a CA certificate installed, you can use the resource to toggle
the CA status field between ACTIVE and DISABLED.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "Type" : "AWS::ACMPCA::CertificateAuthorityActivation", "Properties" : { "Certificate" :String, "CertificateAuthorityArn" :String, "CertificateChain" :String, "Status" :String} }
YAML
Type: AWS::ACMPCA::CertificateAuthorityActivation Properties: Certificate:StringCertificateAuthorityArn:StringCertificateChain:StringStatus:String
Properties
-
The Base64 PEM-encoded certificate authority certificate.
Required: Yes
Type: String
Update requires: No interruption
-
The Amazon Resource Name (ARN) of your private CA.
Required: Yes
Type: String
Update requires: Replacement
-
The Base64 PEM-encoded certificate chain that chains up to the root CA certificate that you used to sign your private CA certificate.
Required: No
Type: String
Update requires: No interruption
-
Status of your private CA.
Required: No
Type: String
Update requires: No interruption
Return values
Ref
The Amazon Resource Name (ARN) of the certificate authority.
Fn::GetAtt
The Fn::GetAtt intrinsic function returns a value for a specified
attribute of this type. The following are the available attributes and sample return
values.
For more information about using the Fn::GetAtt intrinsic function, see
Fn::GetAtt.
CompleteCertificateChain-
The complete Base64 PEM-encoded certificate chain, including the certificate authority certificate.
