AWS::PCAConnectorAD::Template TemplateV3

Certificate validity describes the validity and renewal periods of a certificate.

Required: Yes

Type: CertificateValidity

Update requires: No interruption

Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.

Required: Yes

Type: EnrollmentFlagsV3

Update requires: No interruption

Extensions describe the key usage extensions and application policies for a template.

Required: Yes

Type: ExtensionsV3

Update requires: No interruption

General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.

Required: Yes

Type: GeneralFlagsV3

Update requires: No interruption

Specifies the hash algorithm used to hash the private key.

Required: Yes

Type: String

Allowed values: SHA256 | SHA384 | SHA512

Update requires: No interruption

Private key attributes allow you to specify the algorithm, minimal key length, key spec, key usage, and cryptographic providers for the private key of a certificate for v3 templates. V3 templates allow you to use Key Storage Providers.

Required: Yes

Type: PrivateKeyAttributesV3

Update requires: No interruption

Private key flags for v3 templates specify the client compatibility, if the private key can be exported, if user input is required when using a private key, and if an alternate signature algorithm should be used.

Required: Yes

Type: PrivateKeyFlagsV3

Update requires: No interruption

Subject name flags describe the subject name and subject alternate name that is included in a certificate.

Required: Yes

Type: SubjectNameFlagsV3

Update requires: No interruption

List of templates in Active Directory that are superseded by this template.

Required: No

Type: Array of String

Minimum: 1 | 1

Maximum: 64 | 100

Update requires: No interruption