Docs Home
avi 31.1.1 published on Monday, Apr 14, 2025 by vmware
avi.Sslkeyandcertificate
Explore with Pulumi AI
- –>
- layout: “avi”
- page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.
- Example Usage
- Create Sslkeyandcertificate Resource
- Constructor syntax
- Constructor example
- Sslkeyandcertificate Resource Properties
- Inputs
- Outputs
- Look up Existing Sslkeyandcertificate Resource
- Supporting Types
- Package Details
<!–
Copyright 2021 VMware, Inc.
SPDX-License-Identifier: Mozilla Public License 2.0
–>
layout: “avi”
page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.
avi.Sslkeyandcertificate
The SSLKeyAndCertificate resource allows the creation and management of Avi SSLKeyAndCertificate
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as avi from "@pulumi/avi";
const foo = new avi.Sslkeyandcertificate("foo", {tenantRef: "/api/tenant/?name=admin"});
import pulumi
import pulumi_avi as avi
foo = avi.Sslkeyandcertificate("foo", tenant_ref="/api/tenant/?name=admin")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/avi/v31/avi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := avi.NewSslkeyandcertificate(ctx, "foo", &avi.SslkeyandcertificateArgs{
TenantRef: pulumi.String("/api/tenant/?name=admin"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Avi = Pulumi.Avi;
return await Deployment.RunAsync(() =>
{
var foo = new Avi.Sslkeyandcertificate("foo", new()
{
TenantRef = "/api/tenant/?name=admin",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.avi.Sslkeyandcertificate;
import com.pulumi.avi.SslkeyandcertificateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var foo = new Sslkeyandcertificate("foo", SslkeyandcertificateArgs.builder()
.tenantRef("/api/tenant/?name=admin")
.build());
}
}
resources:
foo:
type: avi:Sslkeyandcertificate
properties:
tenantRef: /api/tenant/?name=admin
Create Sslkeyandcertificate Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Sslkeyandcertificate(name: string, args: SslkeyandcertificateArgs, opts?: CustomResourceOptions);@overload
def Sslkeyandcertificate(resource_name: str,
args: SslkeyandcertificateArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Sslkeyandcertificate(resource_name: str,
opts: Optional[ResourceOptions] = None,
certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
key: Optional[str] = None,
sslkeyandcertificate_id: Optional[str] = None,
certificate_base64: Optional[str] = None,
configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
key_base64: Optional[str] = None,
dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
enable_ocsp_stapling: Optional[str] = None,
enckey_base64: Optional[str] = None,
enckey_name: Optional[str] = None,
format: Optional[str] = None,
hardwaresecuritymodulegroup_ref: Optional[str] = None,
import_key_to_hsm: Optional[str] = None,
certificate_management_profile_ref: Optional[str] = None,
is_federated: Optional[str] = None,
created_by: Optional[str] = None,
key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
key_passphrase: Optional[str] = None,
markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
name: Optional[str] = None,
ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
ocsp_error_status: Optional[str] = None,
ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
status: Optional[str] = None,
tenant_ref: Optional[str] = None,
type: Optional[str] = None,
uuid: Optional[str] = None)func NewSslkeyandcertificate(ctx *Context, name string, args SslkeyandcertificateArgs, opts ...ResourceOption) (*Sslkeyandcertificate, error)public Sslkeyandcertificate(string name, SslkeyandcertificateArgs args, CustomResourceOptions? opts = null)public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args)
public Sslkeyandcertificate(String name, SslkeyandcertificateArgs args, CustomResourceOptions options)
type: avi:Sslkeyandcertificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name
This property is required. string - The unique name of the resource.
- args
This property is required. SslkeyandcertificateArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name
This property is required. str - The unique name of the resource.
- args
This property is required. SslkeyandcertificateArgs - The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. SslkeyandcertificateArgs - The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. SslkeyandcertificateArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name
This property is required. String - The unique name of the resource.
- args
This property is required. SslkeyandcertificateArgs - The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var sslkeyandcertificateResource = new Avi.Sslkeyandcertificate("sslkeyandcertificateResource", new()
{
Certificates = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateArgs
{
Certificate = "string",
CertificateSigningRequest = "string",
ChainVerified = "string",
DaysUntilExpire = "string",
ExpiryStatus = "string",
Fingerprint = "string",
Issuers = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateIssuerArgs
{
CommonName = "string",
Country = "string",
DistinguishedName = "string",
EmailAddress = "string",
Locality = "string",
Organization = "string",
OrganizationUnit = "string",
State = "string",
},
},
KeyParams = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateKeyParamArgs
{
Algorithm = "string",
EcParams = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateKeyParamEcParamArgs
{
Curve = "string",
},
},
RsaParams = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateKeyParamRsaParamArgs
{
Exponent = "string",
KeySize = "string",
},
},
},
},
NotAfter = "string",
NotBefore = "string",
PublicKey = "string",
SelfSigned = "string",
SerialNumber = "string",
Signature = "string",
SignatureAlgorithm = "string",
SubjectAltNames = new[]
{
"string",
},
Subjects = new[]
{
new Avi.Inputs.SslkeyandcertificateCertificateSubjectArgs
{
CommonName = "string",
Country = "string",
DistinguishedName = "string",
EmailAddress = "string",
Locality = "string",
Organization = "string",
OrganizationUnit = "string",
State = "string",
},
},
Text = "string",
Version = "string",
},
},
Key = "string",
SslkeyandcertificateId = "string",
CertificateBase64 = "string",
ConfigpbAttributes = new[]
{
new Avi.Inputs.SslkeyandcertificateConfigpbAttributeArgs
{
Version = "string",
},
},
KeyBase64 = "string",
DynamicParams = new[]
{
new Avi.Inputs.SslkeyandcertificateDynamicParamArgs
{
Name = "string",
IsDynamic = "string",
IsSensitive = "string",
Value = "string",
},
},
EnableOcspStapling = "string",
EnckeyBase64 = "string",
EnckeyName = "string",
Format = "string",
HardwaresecuritymodulegroupRef = "string",
ImportKeyToHsm = "string",
CertificateManagementProfileRef = "string",
IsFederated = "string",
CreatedBy = "string",
KeyParams = new[]
{
new Avi.Inputs.SslkeyandcertificateKeyParamArgs
{
Algorithm = "string",
EcParams = new[]
{
new Avi.Inputs.SslkeyandcertificateKeyParamEcParamArgs
{
Curve = "string",
},
},
RsaParams = new[]
{
new Avi.Inputs.SslkeyandcertificateKeyParamRsaParamArgs
{
Exponent = "string",
KeySize = "string",
},
},
},
},
KeyPassphrase = "string",
Markers = new[]
{
new Avi.Inputs.SslkeyandcertificateMarkerArgs
{
Key = "string",
Values = new[]
{
"string",
},
},
},
Name = "string",
OcspConfigs = new[]
{
new Avi.Inputs.SslkeyandcertificateOcspConfigArgs
{
FailedOcspJobsRetryInterval = "string",
MaxTries = "string",
OcspReqInterval = "string",
OcspRespTimeout = "string",
ResponderUrlLists = new[]
{
"string",
},
UrlAction = "string",
},
},
OcspErrorStatus = "string",
OcspResponderUrlListFromCerts = new[]
{
"string",
},
OcspResponseInfos = new[]
{
new Avi.Inputs.SslkeyandcertificateOcspResponseInfoArgs
{
CertStatus = "string",
OcspRespFromResponderUrl = "string",
OcspResponse = "string",
NextUpdate = "string",
RevocationReason = "string",
RevocationTime = "string",
ThisUpdate = "string",
},
},
CaCerts = new[]
{
new Avi.Inputs.SslkeyandcertificateCaCertArgs
{
CaRef = "string",
Name = "string",
},
},
Status = "string",
TenantRef = "string",
Type = "string",
Uuid = "string",
});
example, err := avi.NewSslkeyandcertificate(ctx, "sslkeyandcertificateResource", &avi.SslkeyandcertificateArgs{
Certificates: .SslkeyandcertificateCertificateArray{
&.SslkeyandcertificateCertificateArgs{
Certificate: pulumi.String("string"),
CertificateSigningRequest: pulumi.String("string"),
ChainVerified: pulumi.String("string"),
DaysUntilExpire: pulumi.String("string"),
ExpiryStatus: pulumi.String("string"),
Fingerprint: pulumi.String("string"),
Issuers: .SslkeyandcertificateCertificateIssuerArray{
&.SslkeyandcertificateCertificateIssuerArgs{
CommonName: pulumi.String("string"),
Country: pulumi.String("string"),
DistinguishedName: pulumi.String("string"),
EmailAddress: pulumi.String("string"),
Locality: pulumi.String("string"),
Organization: pulumi.String("string"),
OrganizationUnit: pulumi.String("string"),
State: pulumi.String("string"),
},
},
KeyParams: .SslkeyandcertificateCertificateKeyParamArray{
&.SslkeyandcertificateCertificateKeyParamArgs{
Algorithm: pulumi.String("string"),
EcParams: .SslkeyandcertificateCertificateKeyParamEcParamArray{
&.SslkeyandcertificateCertificateKeyParamEcParamArgs{
Curve: pulumi.String("string"),
},
},
RsaParams: .SslkeyandcertificateCertificateKeyParamRsaParamArray{
&.SslkeyandcertificateCertificateKeyParamRsaParamArgs{
Exponent: pulumi.String("string"),
KeySize: pulumi.String("string"),
},
},
},
},
NotAfter: pulumi.String("string"),
NotBefore: pulumi.String("string"),
PublicKey: pulumi.String("string"),
SelfSigned: pulumi.String("string"),
SerialNumber: pulumi.String("string"),
Signature: pulumi.String("string"),
SignatureAlgorithm: pulumi.String("string"),
SubjectAltNames: pulumi.StringArray{
pulumi.String("string"),
},
Subjects: .SslkeyandcertificateCertificateSubjectArray{
&.SslkeyandcertificateCertificateSubjectArgs{
CommonName: pulumi.String("string"),
Country: pulumi.String("string"),
DistinguishedName: pulumi.String("string"),
EmailAddress: pulumi.String("string"),
Locality: pulumi.String("string"),
Organization: pulumi.String("string"),
OrganizationUnit: pulumi.String("string"),
State: pulumi.String("string"),
},
},
Text: pulumi.String("string"),
Version: pulumi.String("string"),
},
},
Key: pulumi.String("string"),
SslkeyandcertificateId: pulumi.String("string"),
CertificateBase64: pulumi.String("string"),
ConfigpbAttributes: .SslkeyandcertificateConfigpbAttributeArray{
&.SslkeyandcertificateConfigpbAttributeArgs{
Version: pulumi.String("string"),
},
},
KeyBase64: pulumi.String("string"),
DynamicParams: .SslkeyandcertificateDynamicParamArray{
&.SslkeyandcertificateDynamicParamArgs{
Name: pulumi.String("string"),
IsDynamic: pulumi.String("string"),
IsSensitive: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
EnableOcspStapling: pulumi.String("string"),
EnckeyBase64: pulumi.String("string"),
EnckeyName: pulumi.String("string"),
Format: pulumi.String("string"),
HardwaresecuritymodulegroupRef: pulumi.String("string"),
ImportKeyToHsm: pulumi.String("string"),
CertificateManagementProfileRef: pulumi.String("string"),
IsFederated: pulumi.String("string"),
CreatedBy: pulumi.String("string"),
KeyParams: .SslkeyandcertificateKeyParamArray{
&.SslkeyandcertificateKeyParamArgs{
Algorithm: pulumi.String("string"),
EcParams: .SslkeyandcertificateKeyParamEcParamArray{
&.SslkeyandcertificateKeyParamEcParamArgs{
Curve: pulumi.String("string"),
},
},
RsaParams: .SslkeyandcertificateKeyParamRsaParamArray{
&.SslkeyandcertificateKeyParamRsaParamArgs{
Exponent: pulumi.String("string"),
KeySize: pulumi.String("string"),
},
},
},
},
KeyPassphrase: pulumi.String("string"),
Markers: .SslkeyandcertificateMarkerArray{
&.SslkeyandcertificateMarkerArgs{
Key: pulumi.String("string"),
Values: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Name: pulumi.String("string"),
OcspConfigs: .SslkeyandcertificateOcspConfigArray{
&.SslkeyandcertificateOcspConfigArgs{
FailedOcspJobsRetryInterval: pulumi.String("string"),
MaxTries: pulumi.String("string"),
OcspReqInterval: pulumi.String("string"),
OcspRespTimeout: pulumi.String("string"),
ResponderUrlLists: pulumi.StringArray{
pulumi.String("string"),
},
UrlAction: pulumi.String("string"),
},
},
OcspErrorStatus: pulumi.String("string"),
OcspResponderUrlListFromCerts: pulumi.StringArray{
pulumi.String("string"),
},
OcspResponseInfos: .SslkeyandcertificateOcspResponseInfoArray{
&.SslkeyandcertificateOcspResponseInfoArgs{
CertStatus: pulumi.String("string"),
OcspRespFromResponderUrl: pulumi.String("string"),
OcspResponse: pulumi.String("string"),
NextUpdate: pulumi.String("string"),
RevocationReason: pulumi.String("string"),
RevocationTime: pulumi.String("string"),
ThisUpdate: pulumi.String("string"),
},
},
CaCerts: .SslkeyandcertificateCaCertArray{
&.SslkeyandcertificateCaCertArgs{
CaRef: pulumi.String("string"),
Name: pulumi.String("string"),
},
},
Status: pulumi.String("string"),
TenantRef: pulumi.String("string"),
Type: pulumi.String("string"),
Uuid: pulumi.String("string"),
})
var sslkeyandcertificateResource = new Sslkeyandcertificate("sslkeyandcertificateResource", SslkeyandcertificateArgs.builder()
.certificates(SslkeyandcertificateCertificateArgs.builder()
.certificate("string")
.certificateSigningRequest("string")
.chainVerified("string")
.daysUntilExpire("string")
.expiryStatus("string")
.fingerprint("string")
.issuers(SslkeyandcertificateCertificateIssuerArgs.builder()
.commonName("string")
.country("string")
.distinguishedName("string")
.emailAddress("string")
.locality("string")
.organization("string")
.organizationUnit("string")
.state("string")
.build())
.keyParams(SslkeyandcertificateCertificateKeyParamArgs.builder()
.algorithm("string")
.ecParams(SslkeyandcertificateCertificateKeyParamEcParamArgs.builder()
.curve("string")
.build())
.rsaParams(SslkeyandcertificateCertificateKeyParamRsaParamArgs.builder()
.exponent("string")
.keySize("string")
.build())
.build())
.notAfter("string")
.notBefore("string")
.publicKey("string")
.selfSigned("string")
.serialNumber("string")
.signature("string")
.signatureAlgorithm("string")
.subjectAltNames("string")
.subjects(SslkeyandcertificateCertificateSubjectArgs.builder()
.commonName("string")
.country("string")
.distinguishedName("string")
.emailAddress("string")
.locality("string")
.organization("string")
.organizationUnit("string")
.state("string")
.build())
.text("string")
.version("string")
.build())
.key("string")
.sslkeyandcertificateId("string")
.certificateBase64("string")
.configpbAttributes(SslkeyandcertificateConfigpbAttributeArgs.builder()
.version("string")
.build())
.keyBase64("string")
.dynamicParams(SslkeyandcertificateDynamicParamArgs.builder()
.name("string")
.isDynamic("string")
.isSensitive("string")
.value("string")
.build())
.enableOcspStapling("string")
.enckeyBase64("string")
.enckeyName("string")
.format("string")
.hardwaresecuritymodulegroupRef("string")
.importKeyToHsm("string")
.certificateManagementProfileRef("string")
.isFederated("string")
.createdBy("string")
.keyParams(SslkeyandcertificateKeyParamArgs.builder()
.algorithm("string")
.ecParams(SslkeyandcertificateKeyParamEcParamArgs.builder()
.curve("string")
.build())
.rsaParams(SslkeyandcertificateKeyParamRsaParamArgs.builder()
.exponent("string")
.keySize("string")
.build())
.build())
.keyPassphrase("string")
.markers(SslkeyandcertificateMarkerArgs.builder()
.key("string")
.values("string")
.build())
.name("string")
.ocspConfigs(SslkeyandcertificateOcspConfigArgs.builder()
.failedOcspJobsRetryInterval("string")
.maxTries("string")
.ocspReqInterval("string")
.ocspRespTimeout("string")
.responderUrlLists("string")
.urlAction("string")
.build())
.ocspErrorStatus("string")
.ocspResponderUrlListFromCerts("string")
.ocspResponseInfos(SslkeyandcertificateOcspResponseInfoArgs.builder()
.certStatus("string")
.ocspRespFromResponderUrl("string")
.ocspResponse("string")
.nextUpdate("string")
.revocationReason("string")
.revocationTime("string")
.thisUpdate("string")
.build())
.caCerts(SslkeyandcertificateCaCertArgs.builder()
.caRef("string")
.name("string")
.build())
.status("string")
.tenantRef("string")
.type("string")
.uuid("string")
.build());
sslkeyandcertificate_resource = avi.Sslkeyandcertificate("sslkeyandcertificateResource",
certificates=[{
"certificate": "string",
"certificate_signing_request": "string",
"chain_verified": "string",
"days_until_expire": "string",
"expiry_status": "string",
"fingerprint": "string",
"issuers": [{
"common_name": "string",
"country": "string",
"distinguished_name": "string",
"email_address": "string",
"locality": "string",
"organization": "string",
"organization_unit": "string",
"state": "string",
}],
"key_params": [{
"algorithm": "string",
"ec_params": [{
"curve": "string",
}],
"rsa_params": [{
"exponent": "string",
"key_size": "string",
}],
}],
"not_after": "string",
"not_before": "string",
"public_key": "string",
"self_signed": "string",
"serial_number": "string",
"signature": "string",
"signature_algorithm": "string",
"subject_alt_names": ["string"],
"subjects": [{
"common_name": "string",
"country": "string",
"distinguished_name": "string",
"email_address": "string",
"locality": "string",
"organization": "string",
"organization_unit": "string",
"state": "string",
}],
"text": "string",
"version": "string",
}],
key="string",
sslkeyandcertificate_id="string",
certificate_base64="string",
configpb_attributes=[{
"version": "string",
}],
key_base64="string",
dynamic_params=[{
"name": "string",
"is_dynamic": "string",
"is_sensitive": "string",
"value": "string",
}],
enable_ocsp_stapling="string",
enckey_base64="string",
enckey_name="string",
format="string",
hardwaresecuritymodulegroup_ref="string",
import_key_to_hsm="string",
certificate_management_profile_ref="string",
is_federated="string",
created_by="string",
key_params=[{
"algorithm": "string",
"ec_params": [{
"curve": "string",
}],
"rsa_params": [{
"exponent": "string",
"key_size": "string",
}],
}],
key_passphrase="string",
markers=[{
"key": "string",
"values": ["string"],
}],
name="string",
ocsp_configs=[{
"failed_ocsp_jobs_retry_interval": "string",
"max_tries": "string",
"ocsp_req_interval": "string",
"ocsp_resp_timeout": "string",
"responder_url_lists": ["string"],
"url_action": "string",
}],
ocsp_error_status="string",
ocsp_responder_url_list_from_certs=["string"],
ocsp_response_infos=[{
"cert_status": "string",
"ocsp_resp_from_responder_url": "string",
"ocsp_response": "string",
"next_update": "string",
"revocation_reason": "string",
"revocation_time": "string",
"this_update": "string",
}],
ca_certs=[{
"ca_ref": "string",
"name": "string",
}],
status="string",
tenant_ref="string",
type="string",
uuid="string")
const sslkeyandcertificateResource = new avi.Sslkeyandcertificate("sslkeyandcertificateResource", {
certificates: [{
certificate: "string",
certificateSigningRequest: "string",
chainVerified: "string",
daysUntilExpire: "string",
expiryStatus: "string",
fingerprint: "string",
issuers: [{
commonName: "string",
country: "string",
distinguishedName: "string",
emailAddress: "string",
locality: "string",
organization: "string",
organizationUnit: "string",
state: "string",
}],
keyParams: [{
algorithm: "string",
ecParams: [{
curve: "string",
}],
rsaParams: [{
exponent: "string",
keySize: "string",
}],
}],
notAfter: "string",
notBefore: "string",
publicKey: "string",
selfSigned: "string",
serialNumber: "string",
signature: "string",
signatureAlgorithm: "string",
subjectAltNames: ["string"],
subjects: [{
commonName: "string",
country: "string",
distinguishedName: "string",
emailAddress: "string",
locality: "string",
organization: "string",
organizationUnit: "string",
state: "string",
}],
text: "string",
version: "string",
}],
key: "string",
sslkeyandcertificateId: "string",
certificateBase64: "string",
configpbAttributes: [{
version: "string",
}],
keyBase64: "string",
dynamicParams: [{
name: "string",
isDynamic: "string",
isSensitive: "string",
value: "string",
}],
enableOcspStapling: "string",
enckeyBase64: "string",
enckeyName: "string",
format: "string",
hardwaresecuritymodulegroupRef: "string",
importKeyToHsm: "string",
certificateManagementProfileRef: "string",
isFederated: "string",
createdBy: "string",
keyParams: [{
algorithm: "string",
ecParams: [{
curve: "string",
}],
rsaParams: [{
exponent: "string",
keySize: "string",
}],
}],
keyPassphrase: "string",
markers: [{
key: "string",
values: ["string"],
}],
name: "string",
ocspConfigs: [{
failedOcspJobsRetryInterval: "string",
maxTries: "string",
ocspReqInterval: "string",
ocspRespTimeout: "string",
responderUrlLists: ["string"],
urlAction: "string",
}],
ocspErrorStatus: "string",
ocspResponderUrlListFromCerts: ["string"],
ocspResponseInfos: [{
certStatus: "string",
ocspRespFromResponderUrl: "string",
ocspResponse: "string",
nextUpdate: "string",
revocationReason: "string",
revocationTime: "string",
thisUpdate: "string",
}],
caCerts: [{
caRef: "string",
name: "string",
}],
status: "string",
tenantRef: "string",
type: "string",
uuid: "string",
});
type: avi:Sslkeyandcertificate
properties:
caCerts:
- caRef: string
name: string
certificateBase64: string
certificateManagementProfileRef: string
certificates:
- certificate: string
certificateSigningRequest: string
chainVerified: string
daysUntilExpire: string
expiryStatus: string
fingerprint: string
issuers:
- commonName: string
country: string
distinguishedName: string
emailAddress: string
locality: string
organization: string
organizationUnit: string
state: string
keyParams:
- algorithm: string
ecParams:
- curve: string
rsaParams:
- exponent: string
keySize: string
notAfter: string
notBefore: string
publicKey: string
selfSigned: string
serialNumber: string
signature: string
signatureAlgorithm: string
subjectAltNames:
- string
subjects:
- commonName: string
country: string
distinguishedName: string
emailAddress: string
locality: string
organization: string
organizationUnit: string
state: string
text: string
version: string
configpbAttributes:
- version: string
createdBy: string
dynamicParams:
- isDynamic: string
isSensitive: string
name: string
value: string
enableOcspStapling: string
enckeyBase64: string
enckeyName: string
format: string
hardwaresecuritymodulegroupRef: string
importKeyToHsm: string
isFederated: string
key: string
keyBase64: string
keyParams:
- algorithm: string
ecParams:
- curve: string
rsaParams:
- exponent: string
keySize: string
keyPassphrase: string
markers:
- key: string
values:
- string
name: string
ocspConfigs:
- failedOcspJobsRetryInterval: string
maxTries: string
ocspReqInterval: string
ocspRespTimeout: string
responderUrlLists:
- string
urlAction: string
ocspErrorStatus: string
ocspResponderUrlListFromCerts:
- string
ocspResponseInfos:
- certStatus: string
nextUpdate: string
ocspRespFromResponderUrl: string
ocspResponse: string
revocationReason: string
revocationTime: string
thisUpdate: string
sslkeyandcertificateId: string
status: string
tenantRef: string
type: string
uuid: string
Sslkeyandcertificate Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Sslkeyandcertificate resource accepts the following input properties:
- Certificates
This property is required. List<SslkeyandcertificateCertificate> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ca
Certs List<SslkeyandcertificateCa Cert> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Configpb
Attributes List<SslkeyandcertificateConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dynamic
Params List<SslkeyandcertificateDynamic Param> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- Enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- Import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- Key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Params List<SslkeyandcertificateKey Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
List<Sslkeyandcertificate
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ocsp
Configs List<SslkeyandcertificateOcsp Config> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- Ocsp
Responder List<string>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Response List<SslkeyandcertificateInfos Ocsp Response Info> - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Sslkeyandcertificate
Id string - Status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificates
This property is required. []SslkeyandcertificateCertificate Args - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ca
Certs []SslkeyandcertificateCa Cert Args - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Configpb
Attributes []SslkeyandcertificateConfigpb Attribute Args - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dynamic
Params []SslkeyandcertificateDynamic Param Args - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- Enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- Import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- Key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Params []SslkeyandcertificateKey Param Args - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
[]Sslkeyandcertificate
Marker Args - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ocsp
Configs []SslkeyandcertificateOcsp Config Args - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- Ocsp
Responder []stringUrl List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Response []SslkeyandcertificateInfos Ocsp Response Info Args - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Sslkeyandcertificate
Id string - Status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificates
This property is required. List<SslkeyandcertificateCertificate> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs List<SslkeyandcertificateCa Cert> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 String - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management StringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- configpb
Attributes List<SslkeyandcertificateConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By String - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params List<SslkeyandcertificateDynamic Param> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp StringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 String - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name String - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format String
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref String - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key StringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated String - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key String
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 String - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params List<SslkeyandcertificateKey Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase String - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
List<Sslkeyandcertificate
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs List<SslkeyandcertificateOcsp Config> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error StringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder List<String>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response List<SslkeyandcertificateInfos Ocsp Response Info> - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id String - status String
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type String
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificates
This property is required. SslkeyandcertificateCertificate[] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs SslkeyandcertificateCa Cert[] - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- configpb
Attributes SslkeyandcertificateConfigpb Attribute[] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params SslkeyandcertificateDynamic Param[] - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params SslkeyandcertificateKey Param[] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sslkeyandcertificate
Marker[] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs SslkeyandcertificateOcsp Config[] - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder string[]Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response SslkeyandcertificateInfos Ocsp Response Info[] - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id string - status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificates
This property is required. Sequence[SslkeyandcertificateCertificate Args] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca_
certs Sequence[SslkeyandcertificateCa Cert Args] - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate_
base64 str - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate_
management_ strprofile_ ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- configpb_
attributes Sequence[SslkeyandcertificateConfigpb Attribute Args] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created_
by str - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic_
params Sequence[SslkeyandcertificateDynamic Param Args] - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable_
ocsp_ strstapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey_
base64 str - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey_
name str - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format str
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup_
ref str - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import_
key_ strto_ hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is_
federated str - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key str
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
base64 str - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
params Sequence[SslkeyandcertificateKey Param Args] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
passphrase str - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sequence[Sslkeyandcertificate
Marker Args] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name str
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp_
configs Sequence[SslkeyandcertificateOcsp Config Args] - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp_
error_ strstatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp_
responder_ Sequence[str]url_ list_ from_ certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp_
response_ Sequence[Sslkeyandcertificateinfos Ocsp Response Info Args] - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate_
id str - status str
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant_
ref str - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type str
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid str
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificates
This property is required. List<Property Map> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs List<Property Map> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 String - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management StringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- configpb
Attributes List<Property Map> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By String - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params List<Property Map> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp StringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 String - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name String - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format String
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref String - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key StringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated String - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key String
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 String - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params List<Property Map> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase String - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers List<Property Map>
- List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs List<Property Map> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error StringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder List<String>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response List<Property Map>Infos - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id String - status String
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type String
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Outputs
All input properties are implicitly available as output properties. Additionally, the Sslkeyandcertificate resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Sslkeyandcertificate Resource
Get an existing Sslkeyandcertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SslkeyandcertificateState, opts?: CustomResourceOptions): Sslkeyandcertificate@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
ca_certs: Optional[Sequence[SslkeyandcertificateCaCertArgs]] = None,
certificate_base64: Optional[str] = None,
certificate_management_profile_ref: Optional[str] = None,
certificates: Optional[Sequence[SslkeyandcertificateCertificateArgs]] = None,
configpb_attributes: Optional[Sequence[SslkeyandcertificateConfigpbAttributeArgs]] = None,
created_by: Optional[str] = None,
dynamic_params: Optional[Sequence[SslkeyandcertificateDynamicParamArgs]] = None,
enable_ocsp_stapling: Optional[str] = None,
enckey_base64: Optional[str] = None,
enckey_name: Optional[str] = None,
format: Optional[str] = None,
hardwaresecuritymodulegroup_ref: Optional[str] = None,
import_key_to_hsm: Optional[str] = None,
is_federated: Optional[str] = None,
key: Optional[str] = None,
key_base64: Optional[str] = None,
key_params: Optional[Sequence[SslkeyandcertificateKeyParamArgs]] = None,
key_passphrase: Optional[str] = None,
markers: Optional[Sequence[SslkeyandcertificateMarkerArgs]] = None,
name: Optional[str] = None,
ocsp_configs: Optional[Sequence[SslkeyandcertificateOcspConfigArgs]] = None,
ocsp_error_status: Optional[str] = None,
ocsp_responder_url_list_from_certs: Optional[Sequence[str]] = None,
ocsp_response_infos: Optional[Sequence[SslkeyandcertificateOcspResponseInfoArgs]] = None,
sslkeyandcertificate_id: Optional[str] = None,
status: Optional[str] = None,
tenant_ref: Optional[str] = None,
type: Optional[str] = None,
uuid: Optional[str] = None) -> Sslkeyandcertificatefunc GetSslkeyandcertificate(ctx *Context, name string, id IDInput, state *SslkeyandcertificateState, opts ...ResourceOption) (*Sslkeyandcertificate, error)public static Sslkeyandcertificate Get(string name, Input<string> id, SslkeyandcertificateState? state, CustomResourceOptions? opts = null)public static Sslkeyandcertificate get(String name, Output<String> id, SslkeyandcertificateState state, CustomResourceOptions options)resources: _: type: avi:Sslkeyandcertificate get: id: ${id}- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
The following state arguments are supported:
- Ca
Certs List<SslkeyandcertificateCa Cert> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Certificates
List<Sslkeyandcertificate
Certificate> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Configpb
Attributes List<SslkeyandcertificateConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dynamic
Params List<SslkeyandcertificateDynamic Param> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- Enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- Import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- Key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Params List<SslkeyandcertificateKey Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
List<Sslkeyandcertificate
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ocsp
Configs List<SslkeyandcertificateOcsp Config> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- Ocsp
Responder List<string>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Response List<SslkeyandcertificateInfos Ocsp Response Info> - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Sslkeyandcertificate
Id string - Status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ca
Certs []SslkeyandcertificateCa Cert Args - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Certificates
[]Sslkeyandcertificate
Certificate Args - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Configpb
Attributes []SslkeyandcertificateConfigpb Attribute Args - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Dynamic
Params []SslkeyandcertificateDynamic Param Args - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- Enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- Enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- Import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- Key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Params []SslkeyandcertificateKey Param Args - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Markers
[]Sslkeyandcertificate
Marker Args - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Ocsp
Configs []SslkeyandcertificateOcsp Config Args - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- Ocsp
Responder []stringUrl List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Ocsp
Response []SslkeyandcertificateInfos Ocsp Response Info Args - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- Sslkeyandcertificate
Id string - Status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs List<SslkeyandcertificateCa Cert> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 String - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management StringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- certificates
List<Sslkeyandcertificate
Certificate> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<SslkeyandcertificateConfigpb Attribute> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By String - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params List<SslkeyandcertificateDynamic Param> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp StringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 String - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name String - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format String
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref String - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key StringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated String - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key String
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 String - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params List<SslkeyandcertificateKey Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase String - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
List<Sslkeyandcertificate
Marker> - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs List<SslkeyandcertificateOcsp Config> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error StringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder List<String>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response List<SslkeyandcertificateInfos Ocsp Response Info> - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id String - status String
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type String
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs SslkeyandcertificateCa Cert[] - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 string - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management stringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- certificates
Sslkeyandcertificate
Certificate[] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes SslkeyandcertificateConfigpb Attribute[] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By string - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params SslkeyandcertificateDynamic Param[] - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp stringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 string - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name string - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format string
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref string - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key stringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated string - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key string
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 string - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params SslkeyandcertificateKey Param[] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase string - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sslkeyandcertificate
Marker[] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs SslkeyandcertificateOcsp Config[] - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error stringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder string[]Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response SslkeyandcertificateInfos Ocsp Response Info[] - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id string - status string
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref string - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type string
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca_
certs Sequence[SslkeyandcertificateCa Cert Args] - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate_
base64 str - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate_
management_ strprofile_ ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- certificates
Sequence[Sslkeyandcertificate
Certificate Args] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb_
attributes Sequence[SslkeyandcertificateConfigpb Attribute Args] - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created_
by str - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic_
params Sequence[SslkeyandcertificateDynamic Param Args] - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable_
ocsp_ strstapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey_
base64 str - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey_
name str - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format str
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup_
ref str - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import_
key_ strto_ hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is_
federated str - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key str
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
base64 str - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
params Sequence[SslkeyandcertificateKey Param Args] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key_
passphrase str - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers
Sequence[Sslkeyandcertificate
Marker Args] - List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name str
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp_
configs Sequence[SslkeyandcertificateOcsp Config Args] - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp_
error_ strstatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp_
responder_ Sequence[str]url_ list_ from_ certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp_
response_ Sequence[Sslkeyandcertificateinfos Ocsp Response Info Args] - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate_
id str - status str
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant_
ref str - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type str
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid str
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ca
Certs List<Property Map> - Ca certificates in certificate chain. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Base64 String - States if the certificate is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Management StringProfile Ref - It is a reference to an object of type certificatemanagementprofile. Allowed with any value in enterprise, enterprise with cloud services edition.
- certificates List<Property Map>
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- configpb
Attributes List<Property Map> - Protobuf versioning for config pbs. Field introduced in 21.1.1. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- created
By String - Creator name. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- dynamic
Params List<Property Map> - Dynamic parameters needed for certificate management profile. Allowed with any value in enterprise, enterprise with cloud services edition.
- enable
Ocsp StringStapling - Enables ocsp stapling. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- false), basic (allowed values- false) edition.
- enckey
Base64 String - Encrypted private key corresponding to the private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- enckey
Name String - Name of the encrypted private key (e.g. Those generated by an hsm such as thales nshield). Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- format String
- Format of the key/certificate file. Enum options - SSL_PEM, SSL_PKCS12. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- hardwaresecuritymodulegroup
Ref String - It is a reference to an object of type hardwaresecuritymodulegroup. Allowed with any value in enterprise, enterprise with cloud services edition.
- import
Key StringTo Hsm - Flag to enable private key import to hsm while importing the certificate. Field introduced in 22.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- is
Federated String - It specifies whether the object has to be replicated to the gslb followers. Field introduced in 22.1.3. Allowed with any value in enterprise, enterprise with cloud services edition.
- key String
- Private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Base64 String - States if the private key is base64 encoded. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Params List<Property Map> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- key
Passphrase String - Passphrase used to encrypt the private key. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- markers List<Property Map>
- List of labels to be used for granular rbac. Field introduced in 20.1.5. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- name String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- ocsp
Configs List<Property Map> - Configuration related to ocsp. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Error StringStatus - Error reported during ocsp status query. Enum options - OCSP_ERR_CERTSTATUS_GOOD, OCSP_ERR_CERTSTATUS_REVOKED, OCSP_ERR_CERTSTATUS_UNKNOWN, OCSP_ERR_CERTSTATUS_SERVERFAIL_ERR, OCSP_ERR_CERTSTATUS_JOBDB, OCSP_ERR_CERTSTATUS_DISABLED, OCSP_ERR_CERTSTATUS_GETCERT, OCSP_ERR_CERTSTATUS_NONVSCERT, OCSP_ERR_CERTSTATUS_SELFSIGNED, OCSP_ERR_CERTSTATUS_CERTFINISH, OCSP_ERR_CERTSTATUS_CACERT, OCSP_ERR_CERTSTATUS_REQUEST, OCSP_ERR_CERTSTATUS_ISSUER_REVOKED, OCSP_ERR_CERTSTATUS_PARSE_CERT, OCSP_ERR_CERTSTATUS_HTTP_REQ, OCSP_ERR_CERTSTATUS_URL_LIST, OCSP_ERR_CERTSTATUS_HTTP_SEND, OCSP_ERR_CERTSTATUS_HTTP_RECV, OCSP_ERR_CERTSTATUS_HTTP_RESP. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition. Allowed in essentials (allowed values- ocsp_err_certstatus_disabled), basic (allowed values- ocsp_err_certstatus_disabled) edition.
- ocsp
Responder List<String>Url List From Certs - This is an internal field to store the ocsp responder urls contained in the certificate. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- ocsp
Response List<Property Map>Infos - Information related to ocsp response. Field introduced in 20.1.1. Allowed with any value in enterprise, enterprise with cloud services edition.
- sslkeyandcertificate
Id String - status String
- Enum options - ssl_certificate_finished, ssl_certificate_pending. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- tenant
Ref String - It is a reference to an object of type tenant. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- type String
- Enum options - ssl_certificate_type_virtualservice, ssl_certificate_type_system, ssl_certificate_type_ca. Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- uuid String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
Supporting Types
SslkeyandcertificateCaCert, SslkeyandcertificateCaCertArgs
, SslkeyandcertificateCaCertArgs
SslkeyandcertificateCertificate, SslkeyandcertificateCertificateArgs
, SslkeyandcertificateCertificateArgs
- Certificate string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Signing stringRequest - Chain
Verified string - Days
Until stringExpire - Expiry
Status string - Fingerprint string
- Issuers
List<Sslkeyandcertificate
Certificate Issuer> - Key
Params List<SslkeyandcertificateCertificate Key Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Not
After string - Not
Before string - Public
Key string - Self
Signed string - Serial
Number string - Signature string
- Signature
Algorithm string - Subject
Alt List<string>Names - Subjects
List<Sslkeyandcertificate
Certificate Subject> - Text string
- Version string
- Certificate string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Certificate
Signing stringRequest - Chain
Verified string - Days
Until stringExpire - Expiry
Status string - Fingerprint string
- Issuers
[]Sslkeyandcertificate
Certificate Issuer - Key
Params []SslkeyandcertificateCertificate Key Param - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Not
After string - Not
Before string - Public
Key string - Self
Signed string - Serial
Number string - Signature string
- Signature
Algorithm string - Subject
Alt []stringNames - Subjects
[]Sslkeyandcertificate
Certificate Subject - Text string
- Version string
- certificate String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Signing StringRequest - chain
Verified String - days
Until StringExpire - expiry
Status String - fingerprint String
- issuers
List<Sslkeyandcertificate
Certificate Issuer> - key
Params List<SslkeyandcertificateCertificate Key Param> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- not
After String - not
Before String - public
Key String - self
Signed String - serial
Number String - signature String
- signature
Algorithm String - subject
Alt List<String>Names - subjects
List<Sslkeyandcertificate
Certificate Subject> - text String
- version String
- certificate string
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Signing stringRequest - chain
Verified string - days
Until stringExpire - expiry
Status string - fingerprint string
- issuers
Sslkeyandcertificate
Certificate Issuer[] - key
Params SslkeyandcertificateCertificate Key Param[] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- not
After string - not
Before string - public
Key string - self
Signed string - serial
Number string - signature string
- signature
Algorithm string - subject
Alt string[]Names - subjects
Sslkeyandcertificate
Certificate Subject[] - text string
- version string
- certificate str
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate_
signing_ strrequest - chain_
verified str - days_
until_ strexpire - expiry_
status str - fingerprint str
- issuers
Sequence[Sslkeyandcertificate
Certificate Issuer] - key_
params Sequence[SslkeyandcertificateCertificate Key Param] - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- not_
after str - not_
before str - public_
key str - self_
signed str - serial_
number str - signature str
- signature_
algorithm str - subject_
alt_ Sequence[str]names - subjects
Sequence[Sslkeyandcertificate
Certificate Subject] - text str
- version str
- certificate String
- Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- certificate
Signing StringRequest - chain
Verified String - days
Until StringExpire - expiry
Status String - fingerprint String
- issuers List<Property Map>
- key
Params List<Property Map> - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- not
After String - not
Before String - public
Key String - self
Signed String - serial
Number String - signature String
- signature
Algorithm String - subject
Alt List<String>Names - subjects List<Property Map>
- text String
- version String
SslkeyandcertificateCertificateIssuer, SslkeyandcertificateCertificateIssuerArgs
, SslkeyandcertificateCertificateIssuerArgs
- Common
Name string - Country string
- Distinguished
Name string - Email
Address string - Locality string
- Organization string
- Organization
Unit string - State string
- Common
Name string - Country string
- Distinguished
Name string - Email
Address string - Locality string
- Organization string
- Organization
Unit string - State string
- common
Name String - country String
- distinguished
Name String - email
Address String - locality String
- organization String
- organization
Unit String - state String
- common
Name string - country string
- distinguished
Name string - email
Address string - locality string
- organization string
- organization
Unit string - state string
- common_
name str - country str
- distinguished_
name str - email_
address str - locality str
- organization str
- organization_
unit str - state str
- common
Name String - country String
- distinguished
Name String - email
Address String - locality String
- organization String
- organization
Unit String - state String
SslkeyandcertificateCertificateKeyParam, SslkeyandcertificateCertificateKeyParamArgs
, SslkeyandcertificateCertificateKeyParamArgs
- Algorithm
This property is required. string - Ec
Params List<SslkeyandcertificateCertificate Key Param Ec Param> - Rsa
Params List<SslkeyandcertificateCertificate Key Param Rsa Param>
- Algorithm
This property is required. string - Ec
Params []SslkeyandcertificateCertificate Key Param Ec Param - Rsa
Params []SslkeyandcertificateCertificate Key Param Rsa Param
- algorithm
This property is required. String - ec
Params List<SslkeyandcertificateCertificate Key Param Ec Param> - rsa
Params List<SslkeyandcertificateCertificate Key Param Rsa Param>
- algorithm
This property is required. string - ec
Params SslkeyandcertificateCertificate Key Param Ec Param[] - rsa
Params SslkeyandcertificateCertificate Key Param Rsa Param[]
- algorithm
This property is required. String - ec
Params List<Property Map> - rsa
Params List<Property Map>
SslkeyandcertificateCertificateKeyParamEcParam, SslkeyandcertificateCertificateKeyParamEcParamArgs
, SslkeyandcertificateCertificateKeyParamEcParamArgs
- Curve string
- Curve string
- curve String
- curve string
- curve str
- curve String
SslkeyandcertificateCertificateKeyParamRsaParam, SslkeyandcertificateCertificateKeyParamRsaParamArgs
, SslkeyandcertificateCertificateKeyParamRsaParamArgs
SslkeyandcertificateCertificateSubject, SslkeyandcertificateCertificateSubjectArgs
, SslkeyandcertificateCertificateSubjectArgs
- Common
Name string - Country string
- Distinguished
Name string - Email
Address string - Locality string
- Organization string
- Organization
Unit string - State string
- Common
Name string - Country string
- Distinguished
Name string - Email
Address string - Locality string
- Organization string
- Organization
Unit string - State string
- common
Name String - country String
- distinguished
Name String - email
Address String - locality String
- organization String
- organization
Unit String - state String
- common
Name string - country string
- distinguished
Name string - email
Address string - locality string
- organization string
- organization
Unit string - state string
- common_
name str - country str
- distinguished_
name str - email_
address str - locality str
- organization str
- organization_
unit str - state str
- common
Name String - country String
- distinguished
Name String - email
Address String - locality String
- organization String
- organization
Unit String - state String
SslkeyandcertificateConfigpbAttribute, SslkeyandcertificateConfigpbAttributeArgs
, SslkeyandcertificateConfigpbAttributeArgs
- Version string
- Version string
- version String
- version string
- version str
- version String
SslkeyandcertificateDynamicParam, SslkeyandcertificateDynamicParamArgs
, SslkeyandcertificateDynamicParamArgs
- Name
This property is required. string - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Is
Dynamic string - Is
Sensitive string - Value string
- Name
This property is required. string - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- Is
Dynamic string - Is
Sensitive string - Value string
- name
This property is required. String - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- is
Dynamic String - is
Sensitive String - value String
- name
This property is required. string - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- is
Dynamic string - is
Sensitive string - value string
- name
This property is required. str - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- is_
dynamic str - is_
sensitive str - value str
- name
This property is required. String - Allowed with any value in enterprise, essentials, basic, enterprise with cloud services edition.
- is
Dynamic String - is
Sensitive String - value String
SslkeyandcertificateKeyParam, SslkeyandcertificateKeyParamArgs
, SslkeyandcertificateKeyParamArgs
- Algorithm
This property is required. string - Ec
Params List<SslkeyandcertificateKey Param Ec Param> - Rsa
Params List<SslkeyandcertificateKey Param Rsa Param>
- Algorithm
This property is required. string - Ec
Params []SslkeyandcertificateKey Param Ec Param - Rsa
Params []SslkeyandcertificateKey Param Rsa Param
- algorithm
This property is required. String - ec
Params List<SslkeyandcertificateKey Param Ec Param> - rsa
Params List<SslkeyandcertificateKey Param Rsa Param>
- algorithm
This property is required. string - ec
Params SslkeyandcertificateKey Param Ec Param[] - rsa
Params SslkeyandcertificateKey Param Rsa Param[]
- algorithm
This property is required. str - ec_
params Sequence[SslkeyandcertificateKey Param Ec Param] - rsa_
params Sequence[SslkeyandcertificateKey Param Rsa Param]
- algorithm
This property is required. String - ec
Params List<Property Map> - rsa
Params List<Property Map>
SslkeyandcertificateKeyParamEcParam, SslkeyandcertificateKeyParamEcParamArgs
, SslkeyandcertificateKeyParamEcParamArgs
- Curve string
- Curve string
- curve String
- curve string
- curve str
- curve String
SslkeyandcertificateKeyParamRsaParam, SslkeyandcertificateKeyParamRsaParamArgs
, SslkeyandcertificateKeyParamRsaParamArgs
SslkeyandcertificateMarker, SslkeyandcertificateMarkerArgs
, SslkeyandcertificateMarkerArgs
SslkeyandcertificateOcspConfig, SslkeyandcertificateOcspConfigArgs
, SslkeyandcertificateOcspConfigArgs
- Failed
Ocsp stringJobs Retry Interval - Max
Tries string - Ocsp
Req stringInterval - Ocsp
Resp stringTimeout - Responder
Url List<string>Lists - Url
Action string
- Failed
Ocsp stringJobs Retry Interval - Max
Tries string - Ocsp
Req stringInterval - Ocsp
Resp stringTimeout - Responder
Url []stringLists - Url
Action string
- failed
Ocsp StringJobs Retry Interval - max
Tries String - ocsp
Req StringInterval - ocsp
Resp StringTimeout - responder
Url List<String>Lists - url
Action String
- failed
Ocsp stringJobs Retry Interval - max
Tries string - ocsp
Req stringInterval - ocsp
Resp stringTimeout - responder
Url string[]Lists - url
Action string
- failed_
ocsp_ strjobs_ retry_ interval - max_
tries str - ocsp_
req_ strinterval - ocsp_
resp_ strtimeout - responder_
url_ Sequence[str]lists - url_
action str
- failed
Ocsp StringJobs Retry Interval - max
Tries String - ocsp
Req StringInterval - ocsp
Resp StringTimeout - responder
Url List<String>Lists - url
Action String
SslkeyandcertificateOcspResponseInfo, SslkeyandcertificateOcspResponseInfoArgs
, SslkeyandcertificateOcspResponseInfoArgs
- Cert
Status This property is required. string - Ocsp
Resp From Responder Url This property is required. string - Ocsp
Response This property is required. string - Next
Update string - Revocation
Reason string - Revocation
Time string - This
Update string
- Cert
Status This property is required. string - Ocsp
Resp From Responder Url This property is required. string - Ocsp
Response This property is required. string - Next
Update string - Revocation
Reason string - Revocation
Time string - This
Update string
- cert
Status This property is required. String - ocsp
Resp From Responder Url This property is required. String - ocsp
Response This property is required. String - next
Update String - revocation
Reason String - revocation
Time String - this
Update String
- cert
Status This property is required. string - ocsp
Resp From Responder Url This property is required. string - ocsp
Response This property is required. string - next
Update string - revocation
Reason string - revocation
Time string - this
Update string
- cert_
status This property is required. str - ocsp_
resp_ from_ responder_ url This property is required. str - ocsp_
response This property is required. str - next_
update str - revocation_
reason str - revocation_
time str - this_
update str
- cert
Status This property is required. String - ocsp
Resp From Responder Url This property is required. String - ocsp
Response This property is required. String - next
Update String - revocation
Reason String - revocation
Time String - this
Update String
Package Details
- Repository
- avi vmware/terraform-provider-avi
- License
- Notes
- This Pulumi package is based on the
aviTerraform Provider.
- –>
- layout: “avi”
- page_title: “Avi: avi.Sslkeyandcertificate” sidebar_current: “docs-avi-resource-sslkeyandcertificate” description: |- Creates and manages Avi SSLKeyAndCertificate.
- Example Usage
- Create Sslkeyandcertificate Resource
- Constructor syntax
- Constructor example
- Sslkeyandcertificate Resource Properties
- Inputs
- Outputs
- Look up Existing Sslkeyandcertificate Resource
- Supporting Types
- Package Details