CfnTemplateMixinProps
- class aws_cdk.mixins_preview.aws_pcaconnectorad.mixins.CfnTemplateMixinProps(*, connector_arn=None, definition=None, name=None, reenroll_all_certificate_holders=None, tags=None)
Bases:
objectProperties for CfnTemplatePropsMixin.
- Parameters:
connector_arn (
Optional[str]) – The Amazon Resource Name (ARN) that was returned when you called CreateConnector .definition (
Union[IResolvable,TemplateDefinitionProperty,Dict[str,Any],None]) – Template configuration to define the information included in certificates. Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.name (
Optional[str]) – Name of the templates. Template names must be unique.reenroll_all_certificate_holders (
Union[bool,IResolvable,None]) – This setting allows the major version of a template to be increased automatically. All members of Active Directory groups that are allowed to enroll with a template will receive a new certificate issued using that template.tags (
Optional[Mapping[str,str]]) – Metadata assigned to a template consisting of a key-value pair.
- See:
- ExampleMetadata:
fixture=_generated
Example:
# The code below shows an example of how to instantiate this type. # The values are placeholders you should change. from aws_cdk.mixins_preview.aws_pcaconnectorad import mixins as pcaconnectorad_mixins cfn_template_mixin_props = pcaconnectorad_mixins.CfnTemplateMixinProps( connector_arn="connectorArn", definition=pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateDefinitionProperty( template_v2=pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateV2Property( certificate_validity=pcaconnectorad_mixins.CfnTemplatePropsMixin.CertificateValidityProperty( renewal_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ), validity_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ) ), enrollment_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.EnrollmentFlagsV2Property( enable_key_reuse_on_nt_token_keyset_storage_full=False, include_symmetric_algorithms=False, no_security_extension=False, remove_invalid_certificate_from_personal_store=False, user_interaction_required=False ), extensions=pcaconnectorad_mixins.CfnTemplatePropsMixin.ExtensionsV2Property( application_policies=pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPoliciesProperty( critical=False, policies=[pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPolicyProperty( policy_object_identifier="policyObjectIdentifier", policy_type="policyType" )] ), key_usage=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageProperty( critical=False, usage_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageFlagsProperty( data_encipherment=False, digital_signature=False, key_agreement=False, key_encipherment=False, non_repudiation=False ) ) ), general_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.GeneralFlagsV2Property( auto_enrollment=False, machine_type=False ), private_key_attributes=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyAttributesV2Property( crypto_providers=["cryptoProviders"], key_spec="keySpec", minimal_key_length=123 ), private_key_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyFlagsV2Property( client_version="clientVersion", exportable_key=False, strong_key_protection_required=False ), subject_name_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.SubjectNameFlagsV2Property( require_common_name=False, require_directory_path=False, require_dns_as_cn=False, require_email=False, san_require_directory_guid=False, san_require_dns=False, san_require_domain_dns=False, san_require_email=False, san_require_spn=False, san_require_upn=False ), superseded_templates=["supersededTemplates"] ), template_v3=pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateV3Property( certificate_validity=pcaconnectorad_mixins.CfnTemplatePropsMixin.CertificateValidityProperty( renewal_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ), validity_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ) ), enrollment_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.EnrollmentFlagsV3Property( enable_key_reuse_on_nt_token_keyset_storage_full=False, include_symmetric_algorithms=False, no_security_extension=False, remove_invalid_certificate_from_personal_store=False, user_interaction_required=False ), extensions=pcaconnectorad_mixins.CfnTemplatePropsMixin.ExtensionsV3Property( application_policies=pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPoliciesProperty( critical=False, policies=[pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPolicyProperty( policy_object_identifier="policyObjectIdentifier", policy_type="policyType" )] ), key_usage=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageProperty( critical=False, usage_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageFlagsProperty( data_encipherment=False, digital_signature=False, key_agreement=False, key_encipherment=False, non_repudiation=False ) ) ), general_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.GeneralFlagsV3Property( auto_enrollment=False, machine_type=False ), hash_algorithm="hashAlgorithm", private_key_attributes=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyAttributesV3Property( algorithm="algorithm", crypto_providers=["cryptoProviders"], key_spec="keySpec", key_usage_property=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsagePropertyProperty( property_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsagePropertyFlagsProperty( decrypt=False, key_agreement=False, sign=False ), property_type="propertyType" ), minimal_key_length=123 ), private_key_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyFlagsV3Property( client_version="clientVersion", exportable_key=False, require_alternate_signature_algorithm=False, strong_key_protection_required=False ), subject_name_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.SubjectNameFlagsV3Property( require_common_name=False, require_directory_path=False, require_dns_as_cn=False, require_email=False, san_require_directory_guid=False, san_require_dns=False, san_require_domain_dns=False, san_require_email=False, san_require_spn=False, san_require_upn=False ), superseded_templates=["supersededTemplates"] ), template_v4=pcaconnectorad_mixins.CfnTemplatePropsMixin.TemplateV4Property( certificate_validity=pcaconnectorad_mixins.CfnTemplatePropsMixin.CertificateValidityProperty( renewal_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ), validity_period=pcaconnectorad_mixins.CfnTemplatePropsMixin.ValidityPeriodProperty( period=123, period_type="periodType" ) ), enrollment_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.EnrollmentFlagsV4Property( enable_key_reuse_on_nt_token_keyset_storage_full=False, include_symmetric_algorithms=False, no_security_extension=False, remove_invalid_certificate_from_personal_store=False, user_interaction_required=False ), extensions=pcaconnectorad_mixins.CfnTemplatePropsMixin.ExtensionsV4Property( application_policies=pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPoliciesProperty( critical=False, policies=[pcaconnectorad_mixins.CfnTemplatePropsMixin.ApplicationPolicyProperty( policy_object_identifier="policyObjectIdentifier", policy_type="policyType" )] ), key_usage=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageProperty( critical=False, usage_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsageFlagsProperty( data_encipherment=False, digital_signature=False, key_agreement=False, key_encipherment=False, non_repudiation=False ) ) ), general_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.GeneralFlagsV4Property( auto_enrollment=False, machine_type=False ), hash_algorithm="hashAlgorithm", private_key_attributes=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyAttributesV4Property( algorithm="algorithm", crypto_providers=["cryptoProviders"], key_spec="keySpec", key_usage_property=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsagePropertyProperty( property_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.KeyUsagePropertyFlagsProperty( decrypt=False, key_agreement=False, sign=False ), property_type="propertyType" ), minimal_key_length=123 ), private_key_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.PrivateKeyFlagsV4Property( client_version="clientVersion", exportable_key=False, require_alternate_signature_algorithm=False, require_same_key_renewal=False, strong_key_protection_required=False, use_legacy_provider=False ), subject_name_flags=pcaconnectorad_mixins.CfnTemplatePropsMixin.SubjectNameFlagsV4Property( require_common_name=False, require_directory_path=False, require_dns_as_cn=False, require_email=False, san_require_directory_guid=False, san_require_dns=False, san_require_domain_dns=False, san_require_email=False, san_require_spn=False, san_require_upn=False ), superseded_templates=["supersededTemplates"] ) ), name="name", reenroll_all_certificate_holders=False, tags={ "tags_key": "tags" } )
Attributes
- connector_arn
The Amazon Resource Name (ARN) that was returned when you called CreateConnector .
- definition
Template configuration to define the information included in certificates.
Define certificate validity and renewal periods, certificate request handling and enrollment options, key usage extensions, application policies, and cryptography settings.
- name
Name of the templates.
Template names must be unique.
- reenroll_all_certificate_holders
This setting allows the major version of a template to be increased automatically.
All members of Active Directory groups that are allowed to enroll with a template will receive a new certificate issued using that template.
- tags
Metadata assigned to a template consisting of a key-value pair.