Amazon CA specific attributes

Defines the values that Amazon CA uses for certificate enrollment and renewal.

  • Class Name: X509 Certificate.
    Available when the Certificate Authority attribute references an object of the Amazon CA.
  • Attribute Names: Most CA specific attributes use the [Class name]: and the attribute name. For example: Amazon CA:Validity Period.
  • Additional attributes may appear on the Support tab.
Amazon CA specific attributes

Attribute

Description

Amazon Validity Period

UI: NA
Required: No

Policy Definable: No. Default: NA

Read only. Tracks the most recent time that the driver polled the CA to determine whether the requested certificate is ready for retrieval. By default the driver checks once every 5 minutes.

If the timestamp value is not set, the driver continually polls the CA. The value updates after every unsuccessful retrieval.

License Count

UI: License Count
Required: Yes

Policy Definable: Yes. Default: NA

The number of servers that can host the certificate.

Validity Period

UI: NA
Required: No

Policy Definable: No. Default: NA

The number of years that a certificate is valid. If the value is not set, the shortest validity period allowed by the CA template is the default. If a user assigns a CA template to a Discovered certificate and then renews the certificate, the value also resets to the shortest validity period.