AWS::RolesAnywhere::CRL

Creates a Crl.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "Type" : "AWS::RolesAnywhere::CRL", "Properties" : { "CrlData" : String, "Enabled" : Boolean, "Name" : String, "Tags" : [ Tag, ... ], "TrustAnchorArn" : String } }

YAML

Type: AWS::RolesAnywhere::CRL Properties: CrlData: String Enabled: Boolean Name: String Tags: - Tag TrustAnchorArn: String

Properties

CrlData

x509 v3 Certificate Revocation List to revoke auth for corresponding certificates presented in CreateSession operations

Required: Yes

Type: String

Update requires: No interruption

Enabled

The enabled status of the resource.

Required: No

Type: Boolean

Update requires: No interruption

Name

The customer specified name of the resource.

Required: Yes

Type: String

Update requires: No interruption

Tags

A list of Tags.

Required: No

Type: List of Tag

Update requires: No interruption

TrustAnchorArn

The ARN of the TrustAnchor the certificate revocation list (CRL) will provide revocation for.

Required: No

Type: String

Minimum: 1

Maximum: 1011

Pattern: ^arn:aws(-[^:]+)?:rolesanywhere(:.*){2}(:trust-anchor.*)$

Update requires: No interruption

Return values

Ref

The name of the CRL.

Fn::GetAtt

CrlId

The unique primary identifier of the Crl