ACM Private CA
Private certificate authority for issuing internal TLS certs.
Configuration
Section titled “Configuration”| Setting | Type | Required | Default |
|---|---|---|---|
| CA type Options: Root, Subordinate | Choice | — | ROOT |
| Key algorithm Options: RSA 2048, RSA 4096, ECC P-256, ECC P-384 | Choice | — | RSA_2048 |
| Signing algorithm Options: SHA256 + RSA, SHA384 + RSA, SHA512 + RSA, SHA256 + ECDSA, SHA384 + ECDSA, SHA512 + ECDSA | Choice | — | SHA256WITHRSA |
| Usage mode Options: General purpose, Short-lived | Choice | — | GENERAL_PURPOSE |
| Subject CN | Text | Yes | — |
| Subject Organization | Text | — | — |
| Subject country (ISO 3166-1) | Text | — | — |
| Subject locality | Text | — | — |
| Subject state | Text | — | — |
| Enabled | Toggle | — | true |
| Restore window (days) | Toggle | — | false |
| CRL S3 bucket | Text | — | — |
| CRL enabled | Toggle | — | false |
| OCSP enabled | Toggle | — | false |
| Tags | Key–value | — | — |
Connections
Section titled “Connections”| Socket | Direction | Accepts | Terraform arg |
|---|---|---|---|
| Issued certificates | Output | any | — |