This is the new Amazon CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the Amazon CloudFormation User Guide.
AWS::PCAConnectorAD::Template TemplateV2
v2 template schema that uses Legacy Cryptographic Providers.
Syntax
To declare this entity in your Amazon CloudFormation template, use the following syntax:
JSON
{ "CertificateValidity" :CertificateValidity, "EnrollmentFlags" :EnrollmentFlagsV2, "Extensions" :ExtensionsV2, "GeneralFlags" :GeneralFlagsV2, "PrivateKeyAttributes" :PrivateKeyAttributesV2, "PrivateKeyFlags" :PrivateKeyFlagsV2, "SubjectNameFlags" :SubjectNameFlagsV2, "SupersededTemplates" :[ String, ... ]}
YAML
CertificateValidity:CertificateValidityEnrollmentFlags:EnrollmentFlagsV2Extensions:ExtensionsV2GeneralFlags:GeneralFlagsV2PrivateKeyAttributes:PrivateKeyAttributesV2PrivateKeyFlags:PrivateKeyFlagsV2SubjectNameFlags:SubjectNameFlagsV2SupersededTemplates:- String
Properties
CertificateValidity-
Certificate validity describes the validity and renewal periods of a certificate.
Required: Yes
Type: CertificateValidity
Update requires: No interruption
EnrollmentFlags-
Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.
Required: Yes
Type: EnrollmentFlagsV2
Update requires: No interruption
Extensions-
Extensions describe the key usage extensions and application policies for a template.
Required: Yes
Type: ExtensionsV2
Update requires: No interruption
GeneralFlags-
General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.
Required: Yes
Type: GeneralFlagsV2
Update requires: No interruption
PrivateKeyAttributes-
Private key attributes allow you to specify the minimal key length, key spec, and cryptographic providers for the private key of a certificate for v2 templates. V2 templates allow you to use Legacy Cryptographic Service Providers.
Required: Yes
Type: PrivateKeyAttributesV2
Update requires: No interruption
PrivateKeyFlags-
Private key flags for v2 templates specify the client compatibility, if the private key can be exported, and if user input is required when using a private key.
Required: Yes
Type: PrivateKeyFlagsV2
Update requires: No interruption
SubjectNameFlags-
Subject name flags describe the subject name and subject alternate name that is included in a certificate.
Required: Yes
Type: SubjectNameFlagsV2
Update requires: No interruption
SupersededTemplates-
List of templates in Active Directory that are superseded by this template.
Required: No
Type: Array of String
Minimum:
1 | 1Maximum:
64 | 100Update requires: No interruption