AWS::RolesAnywhere::TrustAnchor SourceData - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::RolesAnywhere::TrustAnchor SourceData

A union object representing the data field of the TrustAnchor depending on its type


To declare this entity in your Amazon CloudFormation template, use the following syntax:


{ "AcmPcaArn" : String, "X509CertificateData" : String }


AcmPcaArn: String X509CertificateData: String



The root certificate of the Amazon Private Certificate Authority specified by this ARN is used in trust validation for temporary credential requests. Included for trust anchors of type AWS_ACM_PCA.


This field is not supported in your region.

Required: No

Type: String

Update requires: No interruption


The PEM-encoded data for the certificate anchor. Included for trust anchors of type CERTIFICATE_BUNDLE.

Required: No

Type: String

Minimum: 1

Maximum: 8000

Update requires: No interruption