1. Packages
  2. Avi Provider
  3. API Docs
  4. Sslkeyandcertificate
avi 31.1.1 published on Monday, Apr 14, 2025 by vmware

avi.Sslkeyandcertificate

Explore with Pulumi AI

<!–

Copyright 2021 VMware, Inc.
SPDX-License-Identifier: Mozilla Public License 2.0

–>

layout: “avi”

page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.

avi.Sslkeyandcertificate

The SSLKeyAndCertificate resource allows the creation and management of Avi SSLKeyAndCertificate

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as avi from "@pulumi/avi";

const foo = new avi.Sslkeyandcertificate("foo", {tenantRef: "/api/tenant/?name=admin"});
Copy
import pulumi
import pulumi_avi as avi

foo = avi.Sslkeyandcertificate("foo", tenant_ref="/api/tenant/?name=admin")
Copy
package main

import (
	"github.com/pulumi/pulumi-terraform-provider/sdks/go/avi/v31/avi"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := avi.NewSslkeyandcertificate(ctx, "foo", &avi.SslkeyandcertificateArgs{
			TenantRef: pulumi.String("/api/tenant/?name=admin"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Avi = Pulumi.Avi;

return await Deployment.RunAsync(() => 
{
    var foo = new Avi.Sslkeyandcertificate("foo", new()
    {
        TenantRef = "/api/tenant/?name=admin",
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.avi.Sslkeyandcertificate;
import com.pulumi.avi.SslkeyandcertificateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var foo = new Sslkeyandcertificate("foo", SslkeyandcertificateArgs.builder()
            .tenantRef("/api/tenant/?name=admin")
            .build());

    }
}
Copy
resources:
  foo:
    type: avi:Sslkeyandcertificate
    properties:
      tenantRef: /api/tenant/?name=admin
Copy

Create Sslkeyandcertificate Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Sslkeyandcertificate(name: string, args: SslkeyandcertificateArgs, opts?: CustomResourceOptions);
@overload
def Sslkeyandcertificate(resource_name: str,
                         args: SslkeyandcertificateArgs,
                         opts: Optional[ResourceOptions] = None)

@overload
def Sslkeyandcertificate(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
                         key: Optional[str] = None,
                         sslkeyandcertificate_id: Optional[str] = None,
                         certificate_base64: Optional[str] = None,
                         configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
                         key_base64: Optional[str] = None,
                         dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
                         enable_ocsp_stapling: Optional[str] = None,
                         enckey_base64: Optional[str] = None,
                         enckey_name: Optional[str] = None,
                         format: Optional[str] = None,
                         hardwaresecuritymodulegroup_ref: Optional[str] = None,
                         import_key_to_hsm: Optional[str] = None,
                         certificate_management_profile_ref: Optional[str] = None,
                         is_federated: Optional[str] = None,
                         created_by: Optional[str] = None,
                         key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
                         key_passphrase: Optional[str] = None,
                         markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
                         name: Optional[str] = None,
                         ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
                         ocsp_error_status: Optional[str] = None,
                         ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
                         ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
                         ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
                         status: Optional[str] = None,
                         tenant_ref: Optional[str] = None,
                         type: Optional[str] = None,
                         uuid: Optional[str] = None)
func NewSslkeyandcertificate(ctx *Context, name string, args SslkeyandcertificateArgs, opts ...ResourceOption) (*Sslkeyandcertificate, error)
public Sslkeyandcertificate(string name, SslkeyandcertificateArgs args, CustomResourceOptions? opts = null)
public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args)
public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args, CustomResourceOptions options)
type: avi:Sslkeyandcertificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name This property is required. string
The unique name of the resource.
args This property is required. SslkeyandcertificateArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name This property is required. str
The unique name of the resource.
args This property is required. SslkeyandcertificateArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name This property is required. string
The unique name of the resource.
args This property is required. SslkeyandcertificateArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name This property is required. string
The unique name of the resource.
args This property is required. SslkeyandcertificateArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name This property is required. String
The unique name of the resource.
args This property is required. SslkeyandcertificateArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var sslkeyandcertificateResource = new Avi.Sslkeyandcertificate("sslkeyandcertificateResource", new()
{
    Certificates = new[]
    {
        new Avi.Inputs.SslkeyandcertificateCertificateArgs
        {
            Certificate = "string",
            CertificateSigningRequest = "string",
            ChainVerified = "string",
            DaysUntilExpire = "string",
            ExpiryStatus = "string",
            Fingerprint = "string",
            Issuers = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateIssuerArgs
                {
                    CommonName = "string",
                    Country = "string",
                    DistinguishedName = "string",
                    EmailAddress = "string",
                    Locality = "string",
                    Organization = "string",
                    OrganizationUnit = "string",
                    State = "string",
                },
            },
            KeyParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateKeyParamArgs
                {
                    Algorithm = "string",
                    EcParams = new[]
                    {
                        new Avi.Inputs.SslkeyandcertificateCertificateKeyParamEcParamArgs
                        {
                            Curve = "string",
                        },
                    },
                    RsaParams = new[]
                    {
                        new Avi.Inputs.SslkeyandcertificateCertificateKeyParamRsaParamArgs
                        {
                            Exponent = "string",
                            KeySize = "string",
                        },
                    },
                },
            },
            NotAfter = "string",
            NotBefore = "string",
            PublicKey = "string",
            SelfSigned = "string",
            SerialNumber = "string",
            Signature = "string",
            SignatureAlgorithm = "string",
            SubjectAltNames = new[]
            {
                "string",
            },
            Subjects = new[]
            {
                new Avi.Inputs.SslkeyandcertificateCertificateSubjectArgs
                {
                    CommonName = "string",
                    Country = "string",
                    DistinguishedName = "string",
                    EmailAddress = "string",
                    Locality = "string",
                    Organization = "string",
                    OrganizationUnit = "string",
                    State = "string",
                },
            },
            Text = "string",
            Version = "string",
        },
    },
    Key = "string",
    SslkeyandcertificateId = "string",
    CertificateBase64 = "string",
    ConfigpbAttributes = new[]
    {
        new Avi.Inputs.SslkeyandcertificateConfigpbAttributeArgs
        {
            Version = "string",
        },
    },
    KeyBase64 = "string",
    DynamicParams = new[]
    {
        new Avi.Inputs.SslkeyandcertificateDynamicParamArgs
        {
            Name = "string",
            IsDynamic = "string",
            IsSensitive = "string",
            Value = "string",
        },
    },
    EnableOcspStapling = "string",
    EnckeyBase64 = "string",
    EnckeyName = "string",
    Format = "string",
    HardwaresecuritymodulegroupRef = "string",
    ImportKeyToHsm = "string",
    CertificateManagementProfileRef = "string",
    IsFederated = "string",
    CreatedBy = "string",
    KeyParams = new[]
    {
        new Avi.Inputs.SslkeyandcertificateKeyParamArgs
        {
            Algorithm = "string",
            EcParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateKeyParamEcParamArgs
                {
                    Curve = "string",
                },
            },
            RsaParams = new[]
            {
                new Avi.Inputs.SslkeyandcertificateKeyParamRsaParamArgs
                {
                    Exponent = "string",
                    KeySize = "string",
                },
            },
        },
    },
    KeyPassphrase = "string",
    Markers = new[]
    {
        new Avi.Inputs.SslkeyandcertificateMarkerArgs
        {
            Key = "string",
            Values = new[]
            {
                "string",
            },
        },
    },
    Name = "string",
    OcspConfigs = new[]
    {
        new Avi.Inputs.SslkeyandcertificateOcspConfigArgs
        {
            FailedOcspJobsRetryInterval = "string",
            MaxTries = "string",
            OcspReqInterval = "string",
            OcspRespTimeout = "string",
            ResponderUrlLists = new[]
            {
                "string",
            },
            UrlAction = "string",
        },
    },
    OcspErrorStatus = "string",
    OcspResponderUrlListFromCerts = new[]
    {
        "string",
    },
    OcspResponseInfos = new[]
    {
        new Avi.Inputs.SslkeyandcertificateOcspResponseInfoArgs
        {
            CertStatus = "string",
            OcspRespFromResponderUrl = "string",
            OcspResponse = "string",
            NextUpdate = "string",
            RevocationReason = "string",
            RevocationTime = "string",
            ThisUpdate = "string",
        },
    },
    CaCerts = new[]
    {
        new Avi.Inputs.SslkeyandcertificateCaCertArgs
        {
            CaRef = "string",
            Name = "string",
        },
    },
    Status = "string",
    TenantRef = "string",
    Type = "string",
    Uuid = "string",
});
Copy
example, err := avi.NewSslkeyandcertificate(ctx, "sslkeyandcertificateResource", &avi.SslkeyandcertificateArgs{
Certificates: .SslkeyandcertificateCertificateArray{
&.SslkeyandcertificateCertificateArgs{
Certificate: pulumi.String("string"),
CertificateSigningRequest: pulumi.String("string"),
ChainVerified: pulumi.String("string"),
DaysUntilExpire: pulumi.String("string"),
ExpiryStatus: pulumi.String("string"),
Fingerprint: pulumi.String("string"),
Issuers: .SslkeyandcertificateCertificateIssuerArray{
&.SslkeyandcertificateCertificateIssuerArgs{
CommonName: pulumi.String("string"),
Country: pulumi.String("string"),
DistinguishedName: pulumi.String("string"),
EmailAddress: pulumi.String("string"),
Locality: pulumi.String("string"),
Organization: pulumi.String("string"),
OrganizationUnit: pulumi.String("string"),
State: pulumi.String("string"),
},
},
KeyParams: .SslkeyandcertificateCertificateKeyParamArray{
&.SslkeyandcertificateCertificateKeyParamArgs{
Algorithm: pulumi.String("string"),
EcParams: .SslkeyandcertificateCertificateKeyParamEcParamArray{
&.SslkeyandcertificateCertificateKeyParamEcParamArgs{
Curve: pulumi.String("string"),
},
},
RsaParams: .SslkeyandcertificateCertificateKeyParamRsaParamArray{
&.SslkeyandcertificateCertificateKeyParamRsaParamArgs{
Exponent: pulumi.String("string"),
KeySize: pulumi.String("string"),
},
},
},
},
NotAfter: pulumi.String("string"),
NotBefore: pulumi.String("string"),
PublicKey: pulumi.String("string"),
SelfSigned: pulumi.String("string"),
SerialNumber: pulumi.String("string"),
Signature: pulumi.String("string"),
SignatureAlgorithm: pulumi.String("string"),
SubjectAltNames: pulumi.StringArray{
pulumi.String("string"),
},
Subjects: .SslkeyandcertificateCertificateSubjectArray{
&.SslkeyandcertificateCertificateSubjectArgs{
CommonName: pulumi.String("string"),
Country: pulumi.String("string"),
DistinguishedName: pulumi.String("string"),
EmailAddress: pulumi.String("string"),
Locality: pulumi.String("string"),
Organization: pulumi.String("string"),
OrganizationUnit: pulumi.String("string"),
State: pulumi.String("string"),
},
},
Text: pulumi.String("string"),
Version: pulumi.String("string"),
},
},
Key: pulumi.String("string"),
SslkeyandcertificateId: pulumi.String("string"),
CertificateBase64: pulumi.String("string"),
ConfigpbAttributes: .SslkeyandcertificateConfigpbAttributeArray{
&.SslkeyandcertificateConfigpbAttributeArgs{
Version: pulumi.String("string"),
},
},
KeyBase64: pulumi.String("string"),
DynamicParams: .SslkeyandcertificateDynamicParamArray{
&.SslkeyandcertificateDynamicParamArgs{
Name: pulumi.String("string"),
IsDynamic: pulumi.String("string"),
IsSensitive: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
EnableOcspStapling: pulumi.String("string"),
EnckeyBase64: pulumi.String("string"),
EnckeyName: pulumi.String("string"),
Format: pulumi.String("string"),
HardwaresecuritymodulegroupRef: pulumi.String("string"),
ImportKeyToHsm: pulumi.String("string"),
CertificateManagementProfileRef: pulumi.String("string"),
IsFederated: pulumi.String("string"),
CreatedBy: pulumi.String("string"),
KeyParams: .SslkeyandcertificateKeyParamArray{
&.SslkeyandcertificateKeyParamArgs{
Algorithm: pulumi.String("string"),
EcParams: .SslkeyandcertificateKeyParamEcParamArray{
&.SslkeyandcertificateKeyParamEcParamArgs{
Curve: pulumi.String("string"),
},
},
RsaParams: .SslkeyandcertificateKeyParamRsaParamArray{
&.SslkeyandcertificateKeyParamRsaParamArgs{
Exponent: pulumi.String("string"),
KeySize: pulumi.String("string"),
},
},
},
},
KeyPassphrase: pulumi.String("string"),
Markers: .SslkeyandcertificateMarkerArray{
&.SslkeyandcertificateMarkerArgs{
Key: pulumi.String("string"),
Values: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Name: pulumi.String("string"),
OcspConfigs: .SslkeyandcertificateOcspConfigArray{
&.SslkeyandcertificateOcspConfigArgs{
FailedOcspJobsRetryInterval: pulumi.String("string"),
MaxTries: pulumi.String("string"),
OcspReqInterval: pulumi.String("string"),
OcspRespTimeout: pulumi.String("string"),
ResponderUrlLists: pulumi.StringArray{
pulumi.String("string"),
},
UrlAction: pulumi.String("string"),
},
},
OcspErrorStatus: pulumi.String("string"),
OcspResponderUrlListFromCerts: pulumi.StringArray{
pulumi.String("string"),
},
OcspResponseInfos: .SslkeyandcertificateOcspResponseInfoArray{
&.SslkeyandcertificateOcspResponseInfoArgs{
CertStatus: pulumi.String("string"),
OcspRespFromResponderUrl: pulumi.String("string"),
OcspResponse: pulumi.String("string"),
NextUpdate: pulumi.String("string"),
RevocationReason: pulumi.String("string"),
RevocationTime: pulumi.String("string"),
ThisUpdate: pulumi.String("string"),
},
},
CaCerts: .SslkeyandcertificateCaCertArray{
&.SslkeyandcertificateCaCertArgs{
CaRef: pulumi.String("string"),
Name: pulumi.String("string"),
},
},
Status: pulumi.String("string"),
TenantRef: pulumi.String("string"),
Type: pulumi.String("string"),
Uuid: pulumi.String("string"),
})
Copy
var sslkeyandcertificateResource = new Sslkeyandcertificate("sslkeyandcertificateResource", SslkeyandcertificateArgs.builder()
    .certificates(SslkeyandcertificateCertificateArgs.builder()
        .certificate("string")
        .certificateSigningRequest("string")
        .chainVerified("string")
        .daysUntilExpire("string")
        .expiryStatus("string")
        .fingerprint("string")
        .issuers(SslkeyandcertificateCertificateIssuerArgs.builder()
            .commonName("string")
            .country("string")
            .distinguishedName("string")
            .emailAddress("string")
            .locality("string")
            .organization("string")
            .organizationUnit("string")
            .state("string")
            .build())
        .keyParams(SslkeyandcertificateCertificateKeyParamArgs.builder()
            .algorithm("string")
            .ecParams(SslkeyandcertificateCertificateKeyParamEcParamArgs.builder()
                .curve("string")
                .build())
            .rsaParams(SslkeyandcertificateCertificateKeyParamRsaParamArgs.builder()
                .exponent("string")
                .keySize("string")
                .build())
            .build())
        .notAfter("string")
        .notBefore("string")
        .publicKey("string")
        .selfSigned("string")
        .serialNumber("string")
        .signature("string")
        .signatureAlgorithm("string")
        .subjectAltNames("string")
        .subjects(SslkeyandcertificateCertificateSubjectArgs.builder()
            .commonName("string")
            .country("string")
            .distinguishedName("string")
            .emailAddress("string")
            .locality("string")
            .organization("string")
            .organizationUnit("string")
            .state("string")
            .build())
        .text("string")
        .version("string")
        .build())
    .key("string")
    .sslkeyandcertificateId("string")
    .certificateBase64("string")
    .configpbAttributes(SslkeyandcertificateConfigpbAttributeArgs.builder()
        .version("string")
        .build())
    .keyBase64("string")
    .dynamicParams(SslkeyandcertificateDynamicParamArgs.builder()
        .name("string")
        .isDynamic("string")
        .isSensitive("string")
        .value("string")
        .build())
    .enableOcspStapling("string")
    .enckeyBase64("string")
    .enckeyName("string")
    .format("string")
    .hardwaresecuritymodulegroupRef("string")
    .importKeyToHsm("string")
    .certificateManagementProfileRef("string")
    .isFederated("string")
    .createdBy("string")
    .keyParams(SslkeyandcertificateKeyParamArgs.builder()
        .algorithm("string")
        .ecParams(SslkeyandcertificateKeyParamEcParamArgs.builder()
            .curve("string")
            .build())
        .rsaParams(SslkeyandcertificateKeyParamRsaParamArgs.builder()
            .exponent("string")
            .keySize("string")
            .build())
        .build())
    .keyPassphrase("string")
    .markers(SslkeyandcertificateMarkerArgs.builder()
        .key("string")
        .values("string")
        .build())
    .name("string")
    .ocspConfigs(SslkeyandcertificateOcspConfigArgs.builder()
        .failedOcspJobsRetryInterval("string")
        .maxTries("string")
        .ocspReqInterval("string")
        .ocspRespTimeout("string")
        .responderUrlLists("string")
        .urlAction("string")
        .build())
    .ocspErrorStatus("string")
    .ocspResponderUrlListFromCerts("string")
    .ocspResponseInfos(SslkeyandcertificateOcspResponseInfoArgs.builder()
        .certStatus("string")
        .ocspRespFromResponderUrl("string")
        .ocspResponse("string")
        .nextUpdate("string")
        .revocationReason("string")
        .revocationTime("string")
        .thisUpdate("string")
        .build())
    .caCerts(SslkeyandcertificateCaCertArgs.builder()
        .caRef("string")
        .name("string")
        .build())
    .status("string")
    .tenantRef("string")
    .type("string")
    .uuid("string")
    .build());
Copy
sslkeyandcertificate_resource = avi.Sslkeyandcertificate("sslkeyandcertificateResource",
    certificates=[{
        "certificate": "string",
        "certificate_signing_request": "string",
        "chain_verified": "string",
        "days_until_expire": "string",
        "expiry_status": "string",
        "fingerprint": "string",
        "issuers": [{
            "common_name": "string",
            "country": "string",
            "distinguished_name": "string",
            "email_address": "string",
            "locality": "string",
            "organization": "string",
            "organization_unit": "string",
            "state": "string",
        }],
        "key_params": [{
            "algorithm": "string",
            "ec_params": [{
                "curve": "string",
            }],
            "rsa_params": [{
                "exponent": "string",
                "key_size": "string",
            }],
        }],
        "not_after": "string",
        "not_before": "string",
        "public_key": "string",
        "self_signed": "string",
        "serial_number": "string",
        "signature": "string",
        "signature_algorithm": "string",
        "subject_alt_names": ["string"],
        "subjects": [{
            "common_name": "string",
            "country": "string",
            "distinguished_name": "string",
            "email_address": "string",
            "locality": "string",
            "organization": "string",
            "organization_unit": "string",
            "state": "string",
        }],
        "text": "string",
        "version": "string",
    }],
    key="string",
    sslkeyandcertificate_id="string",
    certificate_base64="string",
    configpb_attributes=[{
        "version": "string",
    }],
    key_base64="string",
    dynamic_params=[{
        "name": "string",
        "is_dynamic": "string",
        "is_sensitive": "string",
        "value": "string",
    }],
    enable_ocsp_stapling="string",
    enckey_base64="string",
    enckey_name="string",
    format="string",
    hardwaresecuritymodulegroup_ref="string",
    import_key_to_hsm="string",
    certificate_management_profile_ref="string",
    is_federated="string",
    created_by="string",
    key_params=[{
        "algorithm": "string",
        "ec_params": [{
            "curve": "string",
        }],
        "rsa_params": [{
            "exponent": "string",
            "key_size": "string",
        }],
    }],
    key_passphrase="string",
    markers=[{
        "key": "string",
        "values": ["string"],
    }],
    name="string",
    ocsp_configs=[{
        "failed_ocsp_jobs_retry_interval": "string",
        "max_tries": "string",
        "ocsp_req_interval": "string",
        "ocsp_resp_timeout": "string",
        "responder_url_lists": ["string"],
        "url_action": "string",
    }],
    ocsp_error_status="string",
    ocsp_responder_url_list_from_certs=["string"],
    ocsp_response_infos=[{
        "cert_status": "string",
        "ocsp_resp_from_responder_url": "string",
        "ocsp_response": "string",
        "next_update": "string",
        "revocation_reason": "string",
        "revocation_time": "string",
        "this_update": "string",
    }],
    ca_certs=[{
        "ca_ref": "string",
        "name": "string",
    }],
    status="string",
    tenant_ref="string",
    type="string",
    uuid="string")
Copy
const sslkeyandcertificateResource = new avi.Sslkeyandcertificate("sslkeyandcertificateResource", {
    certificates: [{
        certificate: "string",
        certificateSigningRequest: "string",
        chainVerified: "string",
        daysUntilExpire: "string",
        expiryStatus: "string",
        fingerprint: "string",
        issuers: [{
            commonName: "string",
            country: "string",
            distinguishedName: "string",
            emailAddress: "string",
            locality: "string",
            organization: "string",
            organizationUnit: "string",
            state: "string",
        }],
        keyParams: [{
            algorithm: "string",
            ecParams: [{
                curve: "string",
            }],
            rsaParams: [{
                exponent: "string",
                keySize: "string",
            }],
        }],
        notAfter: "string",
        notBefore: "string",
        publicKey: "string",
        selfSigned: "string",
        serialNumber: "string",
        signature: "string",
        signatureAlgorithm: "string",
        subjectAltNames: ["string"],
        subjects: [{
            commonName: "string",
            country: "string",
            distinguishedName: "string",
            emailAddress: "string",
            locality: "string",
            organization: "string",
            organizationUnit: "string",
            state: "string",
        }],
        text: "string",
        version: "string",
    }],
    key: "string",
    sslkeyandcertificateId: "string",
    certificateBase64: "string",
    configpbAttributes: [{
        version: "string",
    }],
    keyBase64: "string",
    dynamicParams: [{
        name: "string",
        isDynamic: "string",
        isSensitive: "string",
        value: "string",
    }],
    enableOcspStapling: "string",
    enckeyBase64: "string",
    enckeyName: "string",
    format: "string",
    hardwaresecuritymodulegroupRef: "string",
    importKeyToHsm: "string",
    certificateManagementProfileRef: "string",
    isFederated: "string",
    createdBy: "string",
    keyParams: [{
        algorithm: "string",
        ecParams: [{
            curve: "string",
        }],
        rsaParams: [{
            exponent: "string",
            keySize: "string",
        }],
    }],
    keyPassphrase: "string",
    markers: [{
        key: "string",
        values: ["string"],
    }],
    name: "string",
    ocspConfigs: [{
        failedOcspJobsRetryInterval: "string",
        maxTries: "string",
        ocspReqInterval: "string",
        ocspRespTimeout: "string",
        responderUrlLists: ["string"],
        urlAction: "string",
    }],
    ocspErrorStatus: "string",
    ocspResponderUrlListFromCerts: ["string"],
    ocspResponseInfos: [{
        certStatus: "string",
        ocspRespFromResponderUrl: "string",
        ocspResponse: "string",
        nextUpdate: "string",
        revocationReason: "string",
        revocationTime: "string",
        thisUpdate: "string",
    }],
    caCerts: [{
        caRef: "string",
        name: "string",
    }],
    status: "string",
    tenantRef: "string",
    type: "string",
    uuid: "string",
});
Copy
type: avi:Sslkeyandcertificate
properties:
    caCerts:
        - caRef: string
          name: string
    certificateBase64: string
    certificateManagementProfileRef: string
    certificates:
        - certificate: string
          certificateSigningRequest: string
          chainVerified: string
          daysUntilExpire: string
          expiryStatus: string
          fingerprint: string
          issuers:
            - commonName: string
              country: string
              distinguishedName: string
              emailAddress: string
              locality: string
              organization: string
              organizationUnit: string
              state: string
          keyParams:
            - algorithm: string
              ecParams:
                - curve: string
              rsaParams:
                - exponent: string
                  keySize: string
          notAfter: string
          notBefore: string
          publicKey: string
          selfSigned: string
          serialNumber: string
          signature: string
          signatureAlgorithm: string
          subjectAltNames:
            - string
          subjects:
            - commonName: string
              country: string
              distinguishedName: string
              emailAddress: string
              locality: string
              organization: string
              organizationUnit: string
              state: string
          text: string
          version: string
    configpbAttributes:
        - version: string
    createdBy: string
    dynamicParams:
        - isDynamic: string
          isSensitive: string
          name: string
          value: string
    enableOcspStapling: string
    enckeyBase64: string
    enckeyName: string
    format: string
    hardwaresecuritymodulegroupRef: string
    importKeyToHsm: string
    isFederated: string
    key: string
    keyBase64: string
    keyParams:
        - algorithm: string
          ecParams:
            - curve: string
          rsaParams:
            - exponent: string
              keySize: string
    keyPassphrase: string
    markers:
        - key: string
          values:
            - string
    name: string
    ocspConfigs:
        - failedOcspJobsRetryInterval: string
          maxTries: string
          ocspReqInterval: string
          ocspRespTimeout: string
          responderUrlLists:
            - string
          urlAction: string
    ocspErrorStatus: string
    ocspResponderUrlListFromCerts:
        - string
    ocspResponseInfos:
        - certStatus: string
          nextUpdate: string
          ocspRespFromResponderUrl: string
          ocspResponse: string
          revocationReason: string
          revocationTime: string
          thisUpdate: string
    sslkeyandcertificateId: string
    status: string
    tenantRef: string
    type: string
    uuid: string
Copy

Sslkeyandcertificate Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The Sslkeyandcertificate resource accepts the following input properties:

Certificates This property is required. List<SslkeyandcertificateCertificate>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaCerts List<SslkeyandcertificateCaCert>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
ConfigpbAttributes List<SslkeyandcertificateConfigpbAttribute>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams List<SslkeyandcertificateDynamicParam>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams List<SslkeyandcertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers List<SslkeyandcertificateMarker>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs List<SslkeyandcertificateOcspConfig>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts List<string>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos List<SslkeyandcertificateOcspResponseInfo>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Certificates This property is required. []SslkeyandcertificateCertificateArgs
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaCerts []SslkeyandcertificateCaCertArgs
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
ConfigpbAttributes []SslkeyandcertificateConfigpbAttributeArgs
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams []SslkeyandcertificateDynamicParamArgs
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams []SslkeyandcertificateKeyParamArgs
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers []SslkeyandcertificateMarkerArgs
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs []SslkeyandcertificateOcspConfigArgs
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts []string
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos []SslkeyandcertificateOcspResponseInfoArgs
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificates This property is required. List<SslkeyandcertificateCertificate>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<SslkeyandcertificateCaCert>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes List<SslkeyandcertificateConfigpbAttribute>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<SslkeyandcertificateDynamicParam>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<SslkeyandcertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<SslkeyandcertificateMarker>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<SslkeyandcertificateOcspConfig>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<SslkeyandcertificateOcspResponseInfo>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificates This property is required. SslkeyandcertificateCertificate[]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts SslkeyandcertificateCaCert[]
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes SslkeyandcertificateConfigpbAttribute[]
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams SslkeyandcertificateDynamicParam[]
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams SslkeyandcertificateKeyParam[]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers SslkeyandcertificateMarker[]
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs SslkeyandcertificateOcspConfig[]
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts string[]
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos SslkeyandcertificateOcspResponseInfo[]
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId string
status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificates This property is required. Sequence[SslkeyandcertificateCertificateArgs]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ca_certs Sequence[SslkeyandcertificateCaCertArgs]
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_base64 str
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_management_profile_ref str
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpb_attributes Sequence[SslkeyandcertificateConfigpbAttributeArgs]
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
created_by str
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamic_params Sequence[SslkeyandcertificateDynamicParamArgs]
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enable_ocsp_stapling str
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckey_base64 str
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckey_name str
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format str
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroup_ref str
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
import_key_to_hsm str
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
is_federated str
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key str
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_base64 str
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_params Sequence[SslkeyandcertificateKeyParamArgs]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_passphrase str
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers Sequence[SslkeyandcertificateMarkerArgs]
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocsp_configs Sequence[SslkeyandcertificateOcspConfigArgs]
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_error_status str
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocsp_responder_url_list_from_certs Sequence[str]
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_response_infos Sequence[SslkeyandcertificateOcspResponseInfoArgs]
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificate_id str
status str
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenant_ref str
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type str
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificates This property is required. List<Property Map>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<Property Map>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
configpbAttributes List<Property Map>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<Property Map>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<Property Map>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<Property Map>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<Property Map>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<Property Map>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

Outputs

All input properties are implicitly available as output properties. Additionally, the Sslkeyandcertificate resource produces the following output properties:

Id string
The provider-assigned unique ID for this managed resource.
Id string
The provider-assigned unique ID for this managed resource.
id String
The provider-assigned unique ID for this managed resource.
id string
The provider-assigned unique ID for this managed resource.
id str
The provider-assigned unique ID for this managed resource.
id String
The provider-assigned unique ID for this managed resource.

Look up Existing Sslkeyandcertificate Resource

Get an existing Sslkeyandcertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SslkeyandcertificateState, opts?: CustomResourceOptions): Sslkeyandcertificate
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
        certificate_base64: Optional[str] = None,
        certificate_management_profile_ref: Optional[str] = None,
        certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
        configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
        created_by: Optional[str] = None,
        dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
        enable_ocsp_stapling: Optional[str] = None,
        enckey_base64: Optional[str] = None,
        enckey_name: Optional[str] = None,
        format: Optional[str] = None,
        hardwaresecuritymodulegroup_ref: Optional[str] = None,
        import_key_to_hsm: Optional[str] = None,
        is_federated: Optional[str] = None,
        key: Optional[str] = None,
        key_base64: Optional[str] = None,
        key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
        key_passphrase: Optional[str] = None,
        markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
        name: Optional[str] = None,
        ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
        ocsp_error_status: Optional[str] = None,
        ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
        ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
        sslkeyandcertificate_id: Optional[str] = None,
        status: Optional[str] = None,
        tenant_ref: Optional[str] = None,
        type: Optional[str] = None,
        uuid: Optional[str] = None) -> Sslkeyandcertificate
func GetSslkeyandcertificate(ctx *Context, name string, id IDInput, state *SslkeyandcertificateState, opts ...ResourceOption) (*Sslkeyandcertificate, error)
public static Sslkeyandcertificate Get(string name, Input<string> id, SslkeyandcertificateState? state, CustomResourceOptions? opts = null)
public static Sslkeyandcertificate get(String name, Output<String> id, SslkeyandcertificateState state, CustomResourceOptions options)
resources:  _:    type: avi:Sslkeyandcertificate    get:      id: ${id}
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name This property is required.
The unique name of the resulting resource.
id This property is required.
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
CaCerts List<SslkeyandcertificateCaCert>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
Certificates List<SslkeyandcertificateCertificate>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ConfigpbAttributes List<SslkeyandcertificateConfigpbAttribute>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams List<SslkeyandcertificateDynamicParam>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams List<SslkeyandcertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers List<SslkeyandcertificateMarker>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs List<SslkeyandcertificateOcspConfig>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts List<string>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos List<SslkeyandcertificateOcspResponseInfo>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaCerts []SslkeyandcertificateCaCertArgs
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
Certificates []SslkeyandcertificateCertificateArgs
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ConfigpbAttributes []SslkeyandcertificateConfigpbAttributeArgs
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CreatedBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
DynamicParams []SslkeyandcertificateDynamicParamArgs
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
EnableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
EnckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
EnckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
HardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
ImportKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
IsFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
Key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyParams []SslkeyandcertificateKeyParamArgs
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
KeyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Markers []SslkeyandcertificateMarkerArgs
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
OcspConfigs []SslkeyandcertificateOcspConfigArgs
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
OcspResponderUrlListFromCerts []string
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
OcspResponseInfos []SslkeyandcertificateOcspResponseInfoArgs
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
SslkeyandcertificateId string
Status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
TenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<SslkeyandcertificateCaCert>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates List<SslkeyandcertificateCertificate>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes List<SslkeyandcertificateConfigpbAttribute>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<SslkeyandcertificateDynamicParam>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<SslkeyandcertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<SslkeyandcertificateMarker>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<SslkeyandcertificateOcspConfig>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<SslkeyandcertificateOcspResponseInfo>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts SslkeyandcertificateCaCert[]
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 string
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef string
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates SslkeyandcertificateCertificate[]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes SslkeyandcertificateConfigpbAttribute[]
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy string
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams SslkeyandcertificateDynamicParam[]
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling string
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 string
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName string
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format string
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef string
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm string
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated string
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 string
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams SslkeyandcertificateKeyParam[]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase string
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers SslkeyandcertificateMarker[]
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs SslkeyandcertificateOcspConfig[]
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus string
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts string[]
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos SslkeyandcertificateOcspResponseInfo[]
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId string
status string
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef string
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type string
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ca_certs Sequence[SslkeyandcertificateCaCertArgs]
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_base64 str
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_management_profile_ref str
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates Sequence[SslkeyandcertificateCertificateArgs]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpb_attributes Sequence[SslkeyandcertificateConfigpbAttributeArgs]
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
created_by str
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamic_params Sequence[SslkeyandcertificateDynamicParamArgs]
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enable_ocsp_stapling str
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckey_base64 str
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckey_name str
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format str
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroup_ref str
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
import_key_to_hsm str
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
is_federated str
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key str
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_base64 str
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_params Sequence[SslkeyandcertificateKeyParamArgs]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
key_passphrase str
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers Sequence[SslkeyandcertificateMarkerArgs]
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocsp_configs Sequence[SslkeyandcertificateOcspConfigArgs]
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_error_status str
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocsp_responder_url_list_from_certs Sequence[str]
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocsp_response_infos Sequence[SslkeyandcertificateOcspResponseInfoArgs]
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificate_id str
status str
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenant_ref str
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type str
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caCerts List<Property Map>
Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateBase64 String
States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateManagementProfileRef String
It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
certificates List<Property Map>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
configpbAttributes List<Property Map>
Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
createdBy String
Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
dynamicParams List<Property Map>
Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
enableOcspStapling String
Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
enckeyBase64 String
Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
enckeyName String
Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
format String
Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
hardwaresecuritymodulegroupRef String
It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
importKeyToHsm String
Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
isFederated String
It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
key String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyBase64 String
States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyParams List<Property Map>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
keyPassphrase String
Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
markers List<Property Map>
List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ocspConfigs List<Property Map>
Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspErrorStatus String
Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
ocspResponderUrlListFromCerts List<String>
This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
ocspResponseInfos List<Property Map>
Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
sslkeyandcertificateId String
status String
Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
tenantRef String
It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
type String
Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
uuid String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

Supporting Types

SslkeyandcertificateCaCert
, SslkeyandcertificateCaCertArgs

CaRef string
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CaRef string
Name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caRef String
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caRef string
name string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
ca_ref str
name str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
caRef String
name String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.

SslkeyandcertificateCertificate
, SslkeyandcertificateCertificateArgs

Certificate string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateSigningRequest string
ChainVerified string
DaysUntilExpire string
ExpiryStatus string
Fingerprint string
Issuers List<SslkeyandcertificateCertificateIssuer>
KeyParams List<SslkeyandcertificateCertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
NotAfter string
NotBefore string
PublicKey string
SelfSigned string
SerialNumber string
Signature string
SignatureAlgorithm string
SubjectAltNames List<string>
Subjects List<SslkeyandcertificateCertificateSubject>
Text string
Version string
Certificate string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
CertificateSigningRequest string
ChainVerified string
DaysUntilExpire string
ExpiryStatus string
Fingerprint string
Issuers []SslkeyandcertificateCertificateIssuer
KeyParams []SslkeyandcertificateCertificateKeyParam
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
NotAfter string
NotBefore string
PublicKey string
SelfSigned string
SerialNumber string
Signature string
SignatureAlgorithm string
SubjectAltNames []string
Subjects []SslkeyandcertificateCertificateSubject
Text string
Version string
certificate String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest String
chainVerified String
daysUntilExpire String
expiryStatus String
fingerprint String
issuers List<SslkeyandcertificateCertificateIssuer>
keyParams List<SslkeyandcertificateCertificateKeyParam>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter String
notBefore String
publicKey String
selfSigned String
serialNumber String
signature String
signatureAlgorithm String
subjectAltNames List<String>
subjects List<SslkeyandcertificateCertificateSubject>
text String
version String
certificate string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest string
chainVerified string
daysUntilExpire string
expiryStatus string
fingerprint string
issuers SslkeyandcertificateCertificateIssuer[]
keyParams SslkeyandcertificateCertificateKeyParam[]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter string
notBefore string
publicKey string
selfSigned string
serialNumber string
signature string
signatureAlgorithm string
subjectAltNames string[]
subjects SslkeyandcertificateCertificateSubject[]
text string
version string
certificate str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificate_signing_request str
chain_verified str
days_until_expire str
expiry_status str
fingerprint str
issuers Sequence[SslkeyandcertificateCertificateIssuer]
key_params Sequence[SslkeyandcertificateCertificateKeyParam]
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
not_after str
not_before str
public_key str
self_signed str
serial_number str
signature str
signature_algorithm str
subject_alt_names Sequence[str]
subjects Sequence[SslkeyandcertificateCertificateSubject]
text str
version str
certificate String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
certificateSigningRequest String
chainVerified String
daysUntilExpire String
expiryStatus String
fingerprint String
issuers List<Property Map>
keyParams List<Property Map>
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
notAfter String
notBefore String
publicKey String
selfSigned String
serialNumber String
signature String
signatureAlgorithm String
subjectAltNames List<String>
subjects List<Property Map>
text String
version String

SslkeyandcertificateCertificateIssuer
, SslkeyandcertificateCertificateIssuerArgs

SslkeyandcertificateCertificateKeyParam
, SslkeyandcertificateCertificateKeyParamArgs

SslkeyandcertificateCertificateKeyParamEcParam
, SslkeyandcertificateCertificateKeyParamEcParamArgs

Curve string
Curve string
curve String
curve string
curve str
curve String

SslkeyandcertificateCertificateKeyParamRsaParam
, SslkeyandcertificateCertificateKeyParamRsaParamArgs

Exponent string
KeySize string
Exponent string
KeySize string
exponent String
keySize String
exponent string
keySize string
exponent String
keySize String

SslkeyandcertificateCertificateSubject
, SslkeyandcertificateCertificateSubjectArgs

SslkeyandcertificateConfigpbAttribute
, SslkeyandcertificateConfigpbAttributeArgs

Version string
Version string
version String
version string
version String

SslkeyandcertificateDynamicParam
, SslkeyandcertificateDynamicParamArgs

Name This property is required. string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
IsDynamic string
IsSensitive string
Value string
Name This property is required. string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
IsDynamic string
IsSensitive string
Value string
name This property is required. String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic String
isSensitive String
value String
name This property is required. string
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic string
isSensitive string
value string
name This property is required. str
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
is_dynamic str
is_sensitive str
value str
name This property is required. String
Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
isDynamic String
isSensitive String
value String

SslkeyandcertificateKeyParam
, SslkeyandcertificateKeyParamArgs

SslkeyandcertificateKeyParamEcParam
, SslkeyandcertificateKeyParamEcParamArgs

Curve string
Curve string
curve String
curve string
curve str
curve String

SslkeyandcertificateKeyParamRsaParam
, SslkeyandcertificateKeyParamRsaParamArgs

Exponent string
KeySize string
Exponent string
KeySize string
exponent String
keySize String
exponent string
keySize string
exponent String
keySize String

SslkeyandcertificateMarker
, SslkeyandcertificateMarkerArgs

Key This property is required. string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Values List<string>
Key This property is required. string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Values []string
key This property is required. String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values List<String>
key This property is required. string
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values string[]
key This property is required. str
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values Sequence[str]
key This property is required. String
Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
values List<String>

SslkeyandcertificateOcspConfig
, SslkeyandcertificateOcspConfigArgs

SslkeyandcertificateOcspResponseInfo
, SslkeyandcertificateOcspResponseInfoArgs

CertStatus This property is required. string
OcspRespFromResponderUrl This property is required. string
OcspResponse This property is required. string
NextUpdate string
RevocationReason string
RevocationTime string
ThisUpdate string
CertStatus This property is required. string
OcspRespFromResponderUrl This property is required. string
OcspResponse This property is required. string
NextUpdate string
RevocationReason string
RevocationTime string
ThisUpdate string
certStatus This property is required. String
ocspRespFromResponderUrl This property is required. String
ocspResponse This property is required. String
nextUpdate String
revocationReason String
revocationTime String
thisUpdate String
certStatus This property is required. string
ocspRespFromResponderUrl This property is required. string
ocspResponse This property is required. string
nextUpdate string
revocationReason string
revocationTime string
thisUpdate string
cert_status This property is required. str
ocsp_resp_from_responder_url This property is required. str
ocsp_response This property is required. str
next_update str
revocation_reason str
revocation_time str
this_update str
certStatus This property is required. String
ocspRespFromResponderUrl This property is required. String
ocspResponse This property is required. String
nextUpdate String
revocationReason String
revocationTime String
thisUpdate String

Package Details

Repository
avi vmware/terraform-provider-avi
License
Notes
This Pulumi package is based on the avi Terraform Provider.