class Aws::ACMPCA::Types::OcspConfiguration

Contains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status.

When you revoke a certificate, OCSP responses may take up to 60 minutes to reflect the new status.

@note When making an API call, you may pass OcspConfiguration

data as a hash:

    {
      enabled: false, # required
      ocsp_custom_cname: "String253",
    }

@!attribute [rw] enabled

Flag enabling use of the Online Certificate Status Protocol (OCSP)
for validating certificate revocation status.
@return [Boolean]

@!attribute [rw] ocsp_custom_cname

By default, ACM Private CA injects an AWS domain into certificates
being validated by the Online Certificate Status Protocol (OCSP). A
customer can alternatively use this object to define a CNAME
specifying a customized OCSP domain.

Note: The value of the CNAME must not include a protocol prefix such
as "http://" or "https://".

For more information, see [Customizing Online Certificate Status
Protocol (OCSP) ][1] in the *AWS Certificate Manager Private
Certificate Authority (PCA) User Guide*.

[1]: https://docs.aws.amazon.com/acm-pca/latest/userguide/ocsp-customize.html
@return [String]

@see docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/OcspConfiguration AWS API Documentation

Constants

SENSITIVE