class Aws::ACMPCA::Types::RevocationConfiguration

Certificate revocation information used by the

CreateCertificateAuthority][1

and [UpdateCertificateAuthority]

actions. Your private certificate authority (CA) can configure Online Certificate Status Protocol (OCSP) support and/or maintain a certificate revocation list (CRL). OCSP returns validation information about certificates as requested by clients, and a CRL contains an updated list of certificates revoked by your CA. For more information, see [RevokeCertificate] and [Setting up a certificate revocation method] in the *AWS Certificate Manager Private Certificate Authority (PCA) User Guide*.

[1]: docs.aws.amazon.com/acm-pca/latest/APIReference/API_CreateCertificateAuthority.html [2]: docs.aws.amazon.com/acm-pca/latest/APIReference/API_UpdateCertificateAuthority.html [3]: docs.aws.amazon.com/acm-pca/latest/APIReference/API_RevokeCertificate.html [4]: docs.aws.amazon.com/acm-pca/latest/userguide/revocation-setup.html

@note When making an API call, you may pass RevocationConfiguration

data as a hash:

    {
      crl_configuration: {
        enabled: false, # required
        expiration_in_days: 1,
        custom_cname: "String253",
        s3_bucket_name: "String3To255",
        s3_object_acl: "PUBLIC_READ", # accepts PUBLIC_READ, BUCKET_OWNER_FULL_CONTROL
      },
      ocsp_configuration: {
        enabled: false, # required
        ocsp_custom_cname: "String253",
      },
    }

@!attribute [rw] crl_configuration

Configuration of the certificate revocation list (CRL), if any,
maintained by your private CA. A CRL is typically updated
approximately 30 minutes after a certificate is revoked. If for any
reason a CRL update fails, ACM Private CA makes further attempts
every 15 minutes.
@return [Types::CrlConfiguration]

@!attribute [rw] ocsp_configuration

Configuration of Online Certificate Status Protocol (OCSP) support,
if any, maintained by your private CA. When you revoke a
certificate, OCSP responses may take up to 60 minutes to reflect the
new status.
@return [Types::OcspConfiguration]

@see docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/RevocationConfiguration AWS API Documentation

Constants

SENSITIVE