AWS::PCAConnectorAD::Template TemplateV2
v2 template schema that uses Legacy Cryptographic Providers.
Syntax
To declare this entity in your Amazon CloudFormation template, use the following syntax:
JSON
{ "CertificateValidity" :
CertificateValidity
, "EnrollmentFlags" :EnrollmentFlagsV2
, "Extensions" :ExtensionsV2
, "GeneralFlags" :GeneralFlagsV2
, "PrivateKeyAttributes" :PrivateKeyAttributesV2
, "PrivateKeyFlags" :PrivateKeyFlagsV2
, "SubjectNameFlags" :SubjectNameFlagsV2
, "SupersededTemplates" :[ String, ... ]
}
YAML
CertificateValidity:
CertificateValidity
EnrollmentFlags:EnrollmentFlagsV2
Extensions:ExtensionsV2
GeneralFlags:GeneralFlagsV2
PrivateKeyAttributes:PrivateKeyAttributesV2
PrivateKeyFlags:PrivateKeyFlagsV2
SubjectNameFlags:SubjectNameFlagsV2
SupersededTemplates:- String
Properties
CertificateValidity
-
Certificate validity describes the validity and renewal periods of a certificate.
Required: Yes
Type: CertificateValidity
Update requires: No interruption
EnrollmentFlags
-
Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.
Required: Yes
Type: EnrollmentFlagsV2
Update requires: No interruption
Extensions
-
Extensions describe the key usage extensions and application policies for a template.
Required: Yes
Type: ExtensionsV2
Update requires: No interruption
GeneralFlags
-
General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.
Required: Yes
Type: GeneralFlagsV2
Update requires: No interruption
PrivateKeyAttributes
-
Private key attributes allow you to specify the minimal key length, key spec, and cryptographic providers for the private key of a certificate for v2 templates. V2 templates allow you to use Legacy Cryptographic Service Providers.
Required: Yes
Type: PrivateKeyAttributesV2
Update requires: No interruption
PrivateKeyFlags
-
Private key flags for v2 templates specify the client compatibility, if the private key can be exported, and if user input is required when using a private key.
Required: Yes
Type: PrivateKeyFlagsV2
Update requires: No interruption
SubjectNameFlags
-
Subject name flags describe the subject name and subject alternate name that is included in a certificate.
Required: Yes
Type: SubjectNameFlagsV2
Update requires: No interruption
SupersededTemplates
-
List of templates in Active Directory that are superseded by this template.
Required: No
Type: Array of String
Minimum:
1 | 1
Maximum:
64 | 100
Update requires: No interruption