AWS::ACMPCA::Certificate ExtendedKeyUsage - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::ACMPCA::Certificate ExtendedKeyUsage

Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the KeyUsage extension.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

Properties

ExtendedKeyUsageObjectIdentifier

Specifies a custom ExtendedKeyUsage with an object identifier (OID).

Required: No

Type: String

Pattern: ^([0-2])\.([0-9]|([0-3][0-9]))((\.([0-9]+)){0,126})$

Minimum: 0

Maximum: 64

Update requires: Replacement

ExtendedKeyUsageType

Specifies a standard ExtendedKeyUsage as defined as in RFC 5280.

Required: No

Type: String

Allowed values: SERVER_AUTH | CLIENT_AUTH | CODE_SIGNING | EMAIL_PROTECTION | TIME_STAMPING | OCSP_SIGNING | SMART_CARD_LOGIN | DOCUMENT_SIGNING | CERTIFICATE_TRANSPARENCY

Update requires: Replacement