This is the new *CloudFormation Template Reference Guide*. Please update your bookmarks and links. For help getting started with CloudFormation, see the [AWS CloudFormation User Guide](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/Welcome.html).

# AWS::AppMesh::VirtualNode ClientPolicyTls
<a name="aws-properties-appmesh-virtualnode-clientpolicytls"></a>

A reference to an object that represents a Transport Layer Security (TLS) client policy.

## Syntax
<a name="aws-properties-appmesh-virtualnode-clientpolicytls-syntax"></a>

To declare this entity in your CloudFormation template, use the following syntax:

### JSON
<a name="aws-properties-appmesh-virtualnode-clientpolicytls-syntax.json"></a>

```
{
  "[Certificate](#cfn-appmesh-virtualnode-clientpolicytls-certificate)" : ClientTlsCertificate,
  "[Enforce](#cfn-appmesh-virtualnode-clientpolicytls-enforce)" : Boolean,
  "[Ports](#cfn-appmesh-virtualnode-clientpolicytls-ports)" : [ Integer, ... ],
  "[Validation](#cfn-appmesh-virtualnode-clientpolicytls-validation)" : TlsValidationContext
}
```

### YAML
<a name="aws-properties-appmesh-virtualnode-clientpolicytls-syntax.yaml"></a>

```
  [Certificate](#cfn-appmesh-virtualnode-clientpolicytls-certificate): 
    ClientTlsCertificate
  [Enforce](#cfn-appmesh-virtualnode-clientpolicytls-enforce): Boolean
  [Ports](#cfn-appmesh-virtualnode-clientpolicytls-ports): 
    - Integer
  [Validation](#cfn-appmesh-virtualnode-clientpolicytls-validation): 
    TlsValidationContext
```

## Properties
<a name="aws-properties-appmesh-virtualnode-clientpolicytls-properties"></a>

`Certificate`  <a name="cfn-appmesh-virtualnode-clientpolicytls-certificate"></a>
A reference to an object that represents a client's TLS certificate.  
*Required*: No  
*Type*: [ClientTlsCertificate](aws-properties-appmesh-virtualnode-clienttlscertificate.md)  
*Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)

`Enforce`  <a name="cfn-appmesh-virtualnode-clientpolicytls-enforce"></a>
Whether the policy is enforced. The default is `True`, if a value isn't specified.  
*Required*: No  
*Type*: Boolean  
*Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)

`Ports`  <a name="cfn-appmesh-virtualnode-clientpolicytls-ports"></a>
One or more ports that the policy is enforced for.  
*Required*: No  
*Type*: Array of Integer  
*Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)

`Validation`  <a name="cfn-appmesh-virtualnode-clientpolicytls-validation"></a>
A reference to an object that represents a TLS validation context.  
*Required*: Yes  
*Type*: [TlsValidationContext](aws-properties-appmesh-virtualnode-tlsvalidationcontext.md)  
*Update requires*: [No interruption](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-update-behaviors.html#update-no-interrupt)