aws-cdk-lib.aws_acmpca.CfnCertificate.SubjectProperty

interface SubjectProperty

LanguageType name
.NETAmazon.CDK.AWS.ACMPCA.CfnCertificate.SubjectProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsacmpca#CfnCertificate_SubjectProperty
Javasoftware.amazon.awscdk.services.acmpca.CfnCertificate.SubjectProperty
Pythonaws_cdk.aws_acmpca.CfnCertificate.SubjectProperty
TypeScript aws-cdk-lib » aws_acmpca » CfnCertificate » SubjectProperty

Contains information about the certificate subject.

The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_acmpca as acmpca } from 'aws-cdk-lib';
const subjectProperty: acmpca.CfnCertificate.SubjectProperty = {
  commonName: 'commonName',
  country: 'country',
  customAttributes: [{
    objectIdentifier: 'objectIdentifier',
    value: 'value',
  }],
  distinguishedNameQualifier: 'distinguishedNameQualifier',
  generationQualifier: 'generationQualifier',
  givenName: 'givenName',
  initials: 'initials',
  locality: 'locality',
  organization: 'organization',
  organizationalUnit: 'organizationalUnit',
  pseudonym: 'pseudonym',
  serialNumber: 'serialNumber',
  state: 'state',
  surname: 'surname',
  title: 'title',
};

Properties

NameTypeDescription
commonName?stringFor CA and end-entity certificates in a private PKI, the common name (CN) can be any string within the length limit.
country?stringTwo-digit code that specifies the country in which the certificate subject located.
customAttributes?IResolvable | IResolvable | CustomAttributeProperty[]Contains a sequence of one or more X.500 relative distinguished names (RDNs), each of which consists of an object identifier (OID) and a value. For more information, see NIST’s definition of Object Identifier (OID) .
distinguishedNameQualifier?stringDisambiguating information for the certificate subject.
generationQualifier?stringTypically a qualifier appended to the name of an individual.
givenName?stringFirst name.
initials?stringConcatenation that typically contains the first letter of the GivenName , the first letter of the middle name if one exists, and the first letter of the Surname .
locality?stringThe locality (such as a city or town) in which the certificate subject is located.
organization?stringLegal name of the organization with which the certificate subject is affiliated.
organizationalUnit?stringA subdivision or unit of the organization (such as sales or finance) with which the certificate subject is affiliated.
pseudonym?stringTypically a shortened version of a longer GivenName .
serialNumber?stringThe certificate serial number.
state?stringState in which the subject of the certificate is located.
surname?stringFamily name.
title?stringA title such as Mr.

commonName?

Type: string (optional)

For CA and end-entity certificates in a private PKI, the common name (CN) can be any string within the length limit.

Note: In publicly trusted certificates, the common name must be a fully qualified domain name (FQDN) associated with the certificate subject.


country?

Type: string (optional)

Two-digit code that specifies the country in which the certificate subject located.


customAttributes?

Type: IResolvable | IResolvable | CustomAttributeProperty[] (optional)

Contains a sequence of one or more X.500 relative distinguished names (RDNs), each of which consists of an object identifier (OID) and a value. For more information, see NIST’s definition of Object Identifier (OID) .

Custom attributes cannot be used in combination with standard attributes.


distinguishedNameQualifier?

Type: string (optional)

Disambiguating information for the certificate subject.


generationQualifier?

Type: string (optional)

Typically a qualifier appended to the name of an individual.

Examples include Jr. for junior, Sr. for senior, and III for third.


givenName?

Type: string (optional)

First name.


initials?

Type: string (optional)

Concatenation that typically contains the first letter of the GivenName , the first letter of the middle name if one exists, and the first letter of the Surname .


locality?

Type: string (optional)

The locality (such as a city or town) in which the certificate subject is located.


organization?

Type: string (optional)

Legal name of the organization with which the certificate subject is affiliated.


organizationalUnit?

Type: string (optional)

A subdivision or unit of the organization (such as sales or finance) with which the certificate subject is affiliated.


pseudonym?

Type: string (optional)

Typically a shortened version of a longer GivenName .

For example, Jonathan is often shortened to John. Elizabeth is often shortened to Beth, Liz, or Eliza.


serialNumber?

Type: string (optional)

The certificate serial number.


state?

Type: string (optional)

State in which the subject of the certificate is located.


surname?

Type: string (optional)

Family name.

In the US and the UK, for example, the surname of an individual is ordered last. In Asian cultures the surname is typically ordered first.


title?

Type: string (optional)

A title such as Mr.

or Ms., which is pre-pended to the name to refer formally to the certificate subject.