This is the new *CloudFormation Template Reference Guide*. Please update your bookmarks and links. For help getting started with CloudFormation, see the [AWS CloudFormation User Guide](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/Welcome.html). # AWS::AppMesh::VirtualNode ListenerTls An object that represents the Transport Layer Security (TLS) properties for a listener. ## Syntax To declare this entity in your CloudFormation template, use the following syntax: ### JSON ``` { "[Certificate](#cfn-appmesh-virtualnode-listenertls-certificate)" : ListenerTlsCertificate, "[Mode](#cfn-appmesh-virtualnode-listenertls-mode)" : String, "[Validation](#cfn-appmesh-virtualnode-listenertls-validation)" : ListenerTlsValidationContext } ``` ### YAML ``` [Certificate](#cfn-appmesh-virtualnode-listenertls-certificate): ListenerTlsCertificate [Mode](#cfn-appmesh-virtualnode-listenertls-mode): String [Validation](#cfn-appmesh-virtualnode-listenertls-validation): ListenerTlsValidationContext ``` ## Properties `Certificate` A reference to an object that represents a listener's Transport Layer Security (TLS) certificate. *Required*: Yes *Type*: [ListenerTlsCertificate](aws-properties-appmesh-virtualnode-listenertlscertificate.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `Mode` Specify one of the following modes. + ****STRICT – Listener only accepts connections with TLS enabled. + ****PERMISSIVE – Listener accepts connections with or without TLS enabled. + ****DISABLED – Listener only accepts connections without TLS. *Required*: Yes *Type*: String *Allowed values*: `STRICT | PERMISSIVE | DISABLED` *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt) `Validation` A reference to an object that represents a listener's Transport Layer Security (TLS) validation context. *Required*: No *Type*: [ListenerTlsValidationContext](aws-properties-appmesh-virtualnode-listenertlsvalidationcontext.md) *Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)