Represents a template that defines certificate configurations, both for issuance and client handling
connector_arn
(String)definition
(Attributes) (see below for nested schema)name
(String)reenroll_all_certificate_holders
(Boolean)tags
(Map of String)id
(String) Uniquely identifies the resource.template_arn
(String)definition
Optional:
template_v2
(Attributes) (see below for nested schema)template_v3
(Attributes) (see below for nested schema)template_v4
(Attributes) (see below for nested schema)definition.template_v2
Required:
certificate_validity
(Attributes) (see below for nested schema)enrollment_flags
(Attributes) (see below for nested schema)extensions
(Attributes) (see below for nested schema)general_flags
(Attributes) (see below for nested schema)private_key_attributes
(Attributes) (see below for nested schema)private_key_flags
(Attributes) (see below for nested schema)subject_name_flags
(Attributes) (see below for nested schema)Optional:
superseded_templates
(List of String)definition.template_v2.certificate_validity
Required:
renewal_period
(Attributes) (see below for nested schema)validity_period
(Attributes) (see below for nested schema)definition.template_v2.certificate_validity.renewal_period
Required:
period
(Number)period_type
(String)definition.template_v2.certificate_validity.validity_period
Required:
period
(Number)period_type
(String)definition.template_v2.enrollment_flags
Optional:
enable_key_reuse_on_nt_token_keyset_storage_full
(Boolean)include_symmetric_algorithms
(Boolean)no_security_extension
(Boolean)remove_invalid_certificate_from_personal_store
(Boolean)user_interaction_required
(Boolean)definition.template_v2.extensions
Required:
key_usage
(Attributes) (see below for nested schema)Optional:
application_policies
(Attributes) (see below for nested schema)definition.template_v2.extensions.key_usage
Required:
usage_flags
(Attributes) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v2.extensions.application_policies.usage_flags
Optional:
data_encipherment
(Boolean)digital_signature
(Boolean)key_agreement
(Boolean)key_encipherment
(Boolean)non_repudiation
(Boolean)definition.template_v2.extensions.application_policies
Required:
policies
(Attributes List) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v2.extensions.application_policies.policies
Optional:
policy_object_identifier
(String)policy_type
(String)definition.template_v2.general_flags
Optional:
auto_enrollment
(Boolean)machine_type
(Boolean)definition.template_v2.private_key_attributes
Required:
key_spec
(String)minimal_key_length
(Number)Optional:
crypto_providers
(List of String)definition.template_v2.private_key_flags
Required:
client_version
(String)Optional:
exportable_key
(Boolean)strong_key_protection_required
(Boolean)definition.template_v2.subject_name_flags
Optional:
require_common_name
(Boolean)require_directory_path
(Boolean)require_dns_as_cn
(Boolean)require_email
(Boolean)san_require_directory_guid
(Boolean)san_require_dns
(Boolean)san_require_domain_dns
(Boolean)san_require_email
(Boolean)san_require_spn
(Boolean)san_require_upn
(Boolean)definition.template_v3
Required:
certificate_validity
(Attributes) (see below for nested schema)enrollment_flags
(Attributes) (see below for nested schema)extensions
(Attributes) (see below for nested schema)general_flags
(Attributes) (see below for nested schema)hash_algorithm
(String)private_key_attributes
(Attributes) (see below for nested schema)private_key_flags
(Attributes) (see below for nested schema)subject_name_flags
(Attributes) (see below for nested schema)Optional:
superseded_templates
(List of String)definition.template_v3.certificate_validity
Required:
renewal_period
(Attributes) (see below for nested schema)validity_period
(Attributes) (see below for nested schema)definition.template_v3.certificate_validity.renewal_period
Required:
period
(Number)period_type
(String)definition.template_v3.certificate_validity.validity_period
Required:
period
(Number)period_type
(String)definition.template_v3.enrollment_flags
Optional:
enable_key_reuse_on_nt_token_keyset_storage_full
(Boolean)include_symmetric_algorithms
(Boolean)no_security_extension
(Boolean)remove_invalid_certificate_from_personal_store
(Boolean)user_interaction_required
(Boolean)definition.template_v3.extensions
Required:
key_usage
(Attributes) (see below for nested schema)Optional:
application_policies
(Attributes) (see below for nested schema)definition.template_v3.extensions.key_usage
Required:
usage_flags
(Attributes) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v3.extensions.application_policies.usage_flags
Optional:
data_encipherment
(Boolean)digital_signature
(Boolean)key_agreement
(Boolean)key_encipherment
(Boolean)non_repudiation
(Boolean)definition.template_v3.extensions.application_policies
Required:
policies
(Attributes List) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v3.extensions.application_policies.policies
Optional:
policy_object_identifier
(String)policy_type
(String)definition.template_v3.general_flags
Optional:
auto_enrollment
(Boolean)machine_type
(Boolean)definition.template_v3.private_key_attributes
Required:
algorithm
(String)key_spec
(String)key_usage_property
(Attributes) (see below for nested schema)minimal_key_length
(Number)Optional:
crypto_providers
(List of String)definition.template_v3.private_key_attributes.key_usage_property
Optional:
property_flags
(Attributes) (see below for nested schema)property_type
(String)definition.template_v3.private_key_attributes.crypto_providers.property_flags
Optional:
decrypt
(Boolean)key_agreement
(Boolean)sign
(Boolean)definition.template_v3.private_key_flags
Required:
client_version
(String)Optional:
exportable_key
(Boolean)require_alternate_signature_algorithm
(Boolean)strong_key_protection_required
(Boolean)definition.template_v3.subject_name_flags
Optional:
require_common_name
(Boolean)require_directory_path
(Boolean)require_dns_as_cn
(Boolean)require_email
(Boolean)san_require_directory_guid
(Boolean)san_require_dns
(Boolean)san_require_domain_dns
(Boolean)san_require_email
(Boolean)san_require_spn
(Boolean)san_require_upn
(Boolean)definition.template_v4
Required:
certificate_validity
(Attributes) (see below for nested schema)enrollment_flags
(Attributes) (see below for nested schema)extensions
(Attributes) (see below for nested schema)general_flags
(Attributes) (see below for nested schema)private_key_attributes
(Attributes) (see below for nested schema)private_key_flags
(Attributes) (see below for nested schema)subject_name_flags
(Attributes) (see below for nested schema)Optional:
hash_algorithm
(String)superseded_templates
(List of String)definition.template_v4.certificate_validity
Required:
renewal_period
(Attributes) (see below for nested schema)validity_period
(Attributes) (see below for nested schema)definition.template_v4.certificate_validity.renewal_period
Required:
period
(Number)period_type
(String)definition.template_v4.certificate_validity.validity_period
Required:
period
(Number)period_type
(String)definition.template_v4.enrollment_flags
Optional:
enable_key_reuse_on_nt_token_keyset_storage_full
(Boolean)include_symmetric_algorithms
(Boolean)no_security_extension
(Boolean)remove_invalid_certificate_from_personal_store
(Boolean)user_interaction_required
(Boolean)definition.template_v4.extensions
Required:
key_usage
(Attributes) (see below for nested schema)Optional:
application_policies
(Attributes) (see below for nested schema)definition.template_v4.extensions.key_usage
Required:
usage_flags
(Attributes) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v4.extensions.application_policies.usage_flags
Optional:
data_encipherment
(Boolean)digital_signature
(Boolean)key_agreement
(Boolean)key_encipherment
(Boolean)non_repudiation
(Boolean)definition.template_v4.extensions.application_policies
Required:
policies
(Attributes List) (see below for nested schema)Optional:
critical
(Boolean)definition.template_v4.extensions.application_policies.policies
Optional:
policy_object_identifier
(String)policy_type
(String)definition.template_v4.general_flags
Optional:
auto_enrollment
(Boolean)machine_type
(Boolean)definition.template_v4.private_key_attributes
Required:
key_spec
(String)minimal_key_length
(Number)Optional:
algorithm
(String)crypto_providers
(List of String)key_usage_property
(Attributes) (see below for nested schema)definition.template_v4.private_key_attributes.key_usage_property
Optional:
property_flags
(Attributes) (see below for nested schema)property_type
(String)definition.template_v4.private_key_attributes.key_usage_property.property_flags
Optional:
decrypt
(Boolean)key_agreement
(Boolean)sign
(Boolean)definition.template_v4.private_key_flags
Required:
client_version
(String)Optional:
exportable_key
(Boolean)require_alternate_signature_algorithm
(Boolean)require_same_key_renewal
(Boolean)strong_key_protection_required
(Boolean)use_legacy_provider
(Boolean)definition.template_v4.subject_name_flags
Optional:
require_common_name
(Boolean)require_directory_path
(Boolean)require_dns_as_cn
(Boolean)require_email
(Boolean)san_require_directory_guid
(Boolean)san_require_dns
(Boolean)san_require_domain_dns
(Boolean)san_require_email
(Boolean)san_require_spn
(Boolean)san_require_upn
(Boolean)Import is supported using the following syntax:
$ terraform import awscc_pcaconnectorad_template.example <resource ID>