interface TemplateV2Property

Language	Type name
.NET	`Amazon.CDK.Mixins.Preview.AWS.PCAConnectorAD.Mixins.CfnTemplatePropsMixin.TemplateV2Property`
Go	`github.com/aws/aws-cdk-go/awscdkmixinspreview/v2/awspcaconnectorad/mixins#CfnTemplatePropsMixin_TemplateV2Property`
Java	`software.amazon.awscdk.mixins.preview.services.pcaconnectorad.mixins.CfnTemplatePropsMixin.TemplateV2Property`
Python	`aws_cdk.mixins_preview.aws_pcaconnectorad.mixins.CfnTemplatePropsMixin.TemplateV2Property`
TypeScript	`@aws-cdk/mixins-preview` » `aws_pcaconnectorad` » `mixins` » `CfnTemplatePropsMixin` » `TemplateV2Property`

v2 template schema that uses Legacy Cryptographic Providers.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { mixins as pcaconnectorad_mixins } from '@aws-cdk/mixins-preview/aws-pcaconnectorad';
const templateV2Property: pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateV2Property = {
  certificateValidity: {
    renewalPeriod: {
      period: 123,
      periodType: 'periodType',
    },
    validityPeriod: {
      period: 123,
      periodType: 'periodType',
    },
  },
  enrollmentFlags: {
    enableKeyReuseOnNtTokenKeysetStorageFull: false,
    includeSymmetricAlgorithms: false,
    noSecurityExtension: false,
    removeInvalidCertificateFromPersonalStore: false,
    userInteractionRequired: false,
  },
  extensions: {
    applicationPolicies: {
      critical: false,
      policies: [{
        policyObjectIdentifier: 'policyObjectIdentifier',
        policyType: 'policyType',
      }],
    },
    keyUsage: {
      critical: false,
      usageFlags: {
        dataEncipherment: false,
        digitalSignature: false,
        keyAgreement: false,
        keyEncipherment: false,
        nonRepudiation: false,
      },
    },
  },
  generalFlags: {
    autoEnrollment: false,
    machineType: false,
  },
  privateKeyAttributes: {
    cryptoProviders: ['cryptoProviders'],
    keySpec: 'keySpec',
    minimalKeyLength: 123,
  },
  privateKeyFlags: {
    clientVersion: 'clientVersion',
    exportableKey: false,
    strongKeyProtectionRequired: false,
  },
  subjectNameFlags: {
    requireCommonName: false,
    requireDirectoryPath: false,
    requireDnsAsCn: false,
    requireEmail: false,
    sanRequireDirectoryGuid: false,
    sanRequireDns: false,
    sanRequireDomainDns: false,
    sanRequireEmail: false,
    sanRequireSpn: false,
    sanRequireUpn: false,
  },
  supersededTemplates: ['supersededTemplates'],
};

Properties

Name	Type	Description
certificateValidity?	`IResolvable` `\|` `CertificateValidityProperty`	Certificate validity describes the validity and renewal periods of a certificate.
enrollmentFlags?	`IResolvable` `\|` `EnrollmentFlagsV2Property`	Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.
extensions?	`IResolvable` `\|` `ExtensionsV2Property`	Extensions describe the key usage extensions and application policies for a template.
generalFlags?	`IResolvable` `\|` `GeneralFlagsV2Property`	General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.
privateKeyAttributes?	`IResolvable` `\|` `PrivateKeyAttributesV2Property`	Private key attributes allow you to specify the minimal key length, key spec, and cryptographic providers for the private key of a certificate for v2 templates.
privateKeyFlags?	`IResolvable` `\|` `PrivateKeyFlagsV2Property`	Private key flags for v2 templates specify the client compatibility, if the private key can be exported, and if user input is required when using a private key.
subjectNameFlags?	`IResolvable` `\|` `SubjectNameFlagsV2Property`	Subject name flags describe the subject name and subject alternate name that is included in a certificate.
supersededTemplates?	`string[]`	List of templates in Active Directory that are superseded by this template.

certificateValidity?

Type: IResolvable | CertificateValidityProperty (optional)

Certificate validity describes the validity and renewal periods of a certificate.

enrollmentFlags?

Type: IResolvable | EnrollmentFlagsV2Property (optional)

Enrollment flags describe the enrollment settings for certificates such as using the existing private key and deleting expired or revoked certificates.

extensions?

Type: IResolvable | ExtensionsV2Property (optional)

Extensions describe the key usage extensions and application policies for a template.

generalFlags?

Type: IResolvable | GeneralFlagsV2Property (optional)

General flags describe whether the template is used for computers or users and if the template can be used with autoenrollment.

privateKeyAttributes?

Type: IResolvable | PrivateKeyAttributesV2Property (optional)

Private key attributes allow you to specify the minimal key length, key spec, and cryptographic providers for the private key of a certificate for v2 templates.

V2 templates allow you to use Legacy Cryptographic Service Providers.

privateKeyFlags?

Type: IResolvable | PrivateKeyFlagsV2Property (optional)

Private key flags for v2 templates specify the client compatibility, if the private key can be exported, and if user input is required when using a private key.

subjectNameFlags?

Type: IResolvable | SubjectNameFlagsV2Property (optional)

Subject name flags describe the subject name and subject alternate name that is included in a certificate.

supersededTemplates?

Type: string[] (optional)

List of templates in Active Directory that are superseded by this template.

AWS CDK

2.233.0