AWS::ACMPCA::Certificate ApiPassthrough - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::ACMPCA::Certificate ApiPassthrough

Contains X.509 certificate information to be placed in an issued certificate. An APIPassthrough or APICSRPassthrough template variant must be selected, or else this parameter is ignored.

If conflicting or duplicate certificate information is supplied from other sources, Amazon Private CA applies order of operation rules to determine what information is used.


To declare this entity in your Amazon CloudFormation template, use the following syntax:



Specifies X.509 extension information for a certificate.

Required: No

Type: Extensions

Update requires: Replacement


Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.

Required: No

Type: Subject

Update requires: Replacement