Docs Home
AWS v6.73.0 published on Wednesday, Mar 19, 2025 by Pulumi
aws.rolesanywhere.TrustAnchor
Explore with Pulumi AI
Resource for managing a Roles Anywhere Trust Anchor.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.acmpca.CertificateAuthority("example", {
permanentDeletionTimeInDays: 7,
type: "ROOT",
certificateAuthorityConfiguration: {
keyAlgorithm: "RSA_4096",
signingAlgorithm: "SHA512WITHRSA",
subject: {
commonName: "example.com",
},
},
});
const current = aws.getPartition({});
const test = new aws.acmpca.Certificate("test", {
certificateAuthorityArn: example.arn,
certificateSigningRequest: example.certificateSigningRequest,
signingAlgorithm: "SHA512WITHRSA",
templateArn: current.then(current => `arn:${current.partition}:acm-pca:::template/RootCACertificate/V1`),
validity: {
type: "YEARS",
value: "1",
},
});
const exampleCertificateAuthorityCertificate = new aws.acmpca.CertificateAuthorityCertificate("example", {
certificateAuthorityArn: example.arn,
certificate: exampleAwsAcmpcaCertificate.certificate,
certificateChain: exampleAwsAcmpcaCertificate.certificateChain,
});
const testTrustAnchor = new aws.rolesanywhere.TrustAnchor("test", {
name: "example",
source: {
sourceData: {
acmPcaArn: example.arn,
},
sourceType: "AWS_ACM_PCA",
},
}, {
dependsOn: [exampleCertificateAuthorityCertificate],
});
import pulumi
import pulumi_aws as aws
example = aws.acmpca.CertificateAuthority("example",
permanent_deletion_time_in_days=7,
type="ROOT",
certificate_authority_configuration={
"key_algorithm": "RSA_4096",
"signing_algorithm": "SHA512WITHRSA",
"subject": {
"common_name": "example.com",
},
})
current = aws.get_partition()
test = aws.acmpca.Certificate("test",
certificate_authority_arn=example.arn,
certificate_signing_request=example.certificate_signing_request,
signing_algorithm="SHA512WITHRSA",
template_arn=f"arn:{current.partition}:acm-pca:::template/RootCACertificate/V1",
validity={
"type": "YEARS",
"value": "1",
})
example_certificate_authority_certificate = aws.acmpca.CertificateAuthorityCertificate("example",
certificate_authority_arn=example.arn,
certificate=example_aws_acmpca_certificate["certificate"],
certificate_chain=example_aws_acmpca_certificate["certificateChain"])
test_trust_anchor = aws.rolesanywhere.TrustAnchor("test",
name="example",
source={
"source_data": {
"acm_pca_arn": example.arn,
},
"source_type": "AWS_ACM_PCA",
},
opts = pulumi.ResourceOptions(depends_on=[example_certificate_authority_certificate]))
package main
import (
"fmt"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/acmpca"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/rolesanywhere"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := acmpca.NewCertificateAuthority(ctx, "example", &acmpca.CertificateAuthorityArgs{
PermanentDeletionTimeInDays: pulumi.Int(7),
Type: pulumi.String("ROOT"),
CertificateAuthorityConfiguration: &acmpca.CertificateAuthorityCertificateAuthorityConfigurationArgs{
KeyAlgorithm: pulumi.String("RSA_4096"),
SigningAlgorithm: pulumi.String("SHA512WITHRSA"),
Subject: &acmpca.CertificateAuthorityCertificateAuthorityConfigurationSubjectArgs{
CommonName: pulumi.String("example.com"),
},
},
})
if err != nil {
return err
}
current, err := aws.GetPartition(ctx, &aws.GetPartitionArgs{}, nil)
if err != nil {
return err
}
_, err = acmpca.NewCertificate(ctx, "test", &acmpca.CertificateArgs{
CertificateAuthorityArn: example.Arn,
CertificateSigningRequest: example.CertificateSigningRequest,
SigningAlgorithm: pulumi.String("SHA512WITHRSA"),
TemplateArn: pulumi.Sprintf("arn:%v:acm-pca:::template/RootCACertificate/V1", current.Partition),
Validity: &acmpca.CertificateValidityArgs{
Type: pulumi.String("YEARS"),
Value: pulumi.String("1"),
},
})
if err != nil {
return err
}
exampleCertificateAuthorityCertificate, err := acmpca.NewCertificateAuthorityCertificate(ctx, "example", &acmpca.CertificateAuthorityCertificateArgs{
CertificateAuthorityArn: example.Arn,
Certificate: pulumi.Any(exampleAwsAcmpcaCertificate.Certificate),
CertificateChain: pulumi.Any(exampleAwsAcmpcaCertificate.CertificateChain),
})
if err != nil {
return err
}
_, err = rolesanywhere.NewTrustAnchor(ctx, "test", &rolesanywhere.TrustAnchorArgs{
Name: pulumi.String("example"),
Source: &rolesanywhere.TrustAnchorSourceArgs{
SourceData: &rolesanywhere.TrustAnchorSourceSourceDataArgs{
AcmPcaArn: example.Arn,
},
SourceType: pulumi.String("AWS_ACM_PCA"),
},
}, pulumi.DependsOn([]pulumi.Resource{
exampleCertificateAuthorityCertificate,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Acmpca.CertificateAuthority("example", new()
{
PermanentDeletionTimeInDays = 7,
Type = "ROOT",
CertificateAuthorityConfiguration = new Aws.Acmpca.Inputs.CertificateAuthorityCertificateAuthorityConfigurationArgs
{
KeyAlgorithm = "RSA_4096",
SigningAlgorithm = "SHA512WITHRSA",
Subject = new Aws.Acmpca.Inputs.CertificateAuthorityCertificateAuthorityConfigurationSubjectArgs
{
CommonName = "example.com",
},
},
});
var current = Aws.GetPartition.Invoke();
var test = new Aws.Acmpca.Certificate("test", new()
{
CertificateAuthorityArn = example.Arn,
CertificateSigningRequest = example.CertificateSigningRequest,
SigningAlgorithm = "SHA512WITHRSA",
TemplateArn = $"arn:{current.Apply(getPartitionResult => getPartitionResult.Partition)}:acm-pca:::template/RootCACertificate/V1",
Validity = new Aws.Acmpca.Inputs.CertificateValidityArgs
{
Type = "YEARS",
Value = "1",
},
});
var exampleCertificateAuthorityCertificate = new Aws.Acmpca.CertificateAuthorityCertificate("example", new()
{
CertificateAuthorityArn = example.Arn,
Certificate = exampleAwsAcmpcaCertificate.Certificate,
CertificateChain = exampleAwsAcmpcaCertificate.CertificateChain,
});
var testTrustAnchor = new Aws.RolesAnywhere.TrustAnchor("test", new()
{
Name = "example",
Source = new Aws.RolesAnywhere.Inputs.TrustAnchorSourceArgs
{
SourceData = new Aws.RolesAnywhere.Inputs.TrustAnchorSourceSourceDataArgs
{
AcmPcaArn = example.Arn,
},
SourceType = "AWS_ACM_PCA",
},
}, new CustomResourceOptions
{
DependsOn =
{
exampleCertificateAuthorityCertificate,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.acmpca.CertificateAuthority;
import com.pulumi.aws.acmpca.CertificateAuthorityArgs;
import com.pulumi.aws.acmpca.inputs.CertificateAuthorityCertificateAuthorityConfigurationArgs;
import com.pulumi.aws.acmpca.inputs.CertificateAuthorityCertificateAuthorityConfigurationSubjectArgs;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetPartitionArgs;
import com.pulumi.aws.acmpca.Certificate;
import com.pulumi.aws.acmpca.CertificateArgs;
import com.pulumi.aws.acmpca.inputs.CertificateValidityArgs;
import com.pulumi.aws.acmpca.CertificateAuthorityCertificate;
import com.pulumi.aws.acmpca.CertificateAuthorityCertificateArgs;
import com.pulumi.aws.rolesanywhere.TrustAnchor;
import com.pulumi.aws.rolesanywhere.TrustAnchorArgs;
import com.pulumi.aws.rolesanywhere.inputs.TrustAnchorSourceArgs;
import com.pulumi.aws.rolesanywhere.inputs.TrustAnchorSourceSourceDataArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new CertificateAuthority("example", CertificateAuthorityArgs.builder()
.permanentDeletionTimeInDays(7)
.type("ROOT")
.certificateAuthorityConfiguration(CertificateAuthorityCertificateAuthorityConfigurationArgs.builder()
.keyAlgorithm("RSA_4096")
.signingAlgorithm("SHA512WITHRSA")
.subject(CertificateAuthorityCertificateAuthorityConfigurationSubjectArgs.builder()
.commonName("example.com")
.build())
.build())
.build());
final var current = AwsFunctions.getPartition();
var test = new Certificate("test", CertificateArgs.builder()
.certificateAuthorityArn(example.arn())
.certificateSigningRequest(example.certificateSigningRequest())
.signingAlgorithm("SHA512WITHRSA")
.templateArn(String.format("arn:%s:acm-pca:::template/RootCACertificate/V1", current.applyValue(getPartitionResult -> getPartitionResult.partition())))
.validity(CertificateValidityArgs.builder()
.type("YEARS")
.value(1)
.build())
.build());
var exampleCertificateAuthorityCertificate = new CertificateAuthorityCertificate("exampleCertificateAuthorityCertificate", CertificateAuthorityCertificateArgs.builder()
.certificateAuthorityArn(example.arn())
.certificate(exampleAwsAcmpcaCertificate.certificate())
.certificateChain(exampleAwsAcmpcaCertificate.certificateChain())
.build());
var testTrustAnchor = new TrustAnchor("testTrustAnchor", TrustAnchorArgs.builder()
.name("example")
.source(TrustAnchorSourceArgs.builder()
.sourceData(TrustAnchorSourceSourceDataArgs.builder()
.acmPcaArn(example.arn())
.build())
.sourceType("AWS_ACM_PCA")
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(exampleCertificateAuthorityCertificate)
.build());
}
}
resources:
example:
type: aws:acmpca:CertificateAuthority
properties:
permanentDeletionTimeInDays: 7
type: ROOT
certificateAuthorityConfiguration:
keyAlgorithm: RSA_4096
signingAlgorithm: SHA512WITHRSA
subject:
commonName: example.com
test:
type: aws:acmpca:Certificate
properties:
certificateAuthorityArn: ${example.arn}
certificateSigningRequest: ${example.certificateSigningRequest}
signingAlgorithm: SHA512WITHRSA
templateArn: arn:${current.partition}:acm-pca:::template/RootCACertificate/V1
validity:
type: YEARS
value: 1
exampleCertificateAuthorityCertificate:
type: aws:acmpca:CertificateAuthorityCertificate
name: example
properties:
certificateAuthorityArn: ${example.arn}
certificate: ${exampleAwsAcmpcaCertificate.certificate}
certificateChain: ${exampleAwsAcmpcaCertificate.certificateChain}
testTrustAnchor:
type: aws:rolesanywhere:TrustAnchor
name: test
properties:
name: example
source:
sourceData:
acmPcaArn: ${example.arn}
sourceType: AWS_ACM_PCA
options:
dependsOn:
- ${exampleCertificateAuthorityCertificate}
variables:
current:
fn::invoke:
function: aws:getPartition
arguments: {}
Create TrustAnchor Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new TrustAnchor(name: string, args: TrustAnchorArgs, opts?: CustomResourceOptions);@overload
def TrustAnchor(resource_name: str,
args: TrustAnchorArgs,
opts: Optional[ResourceOptions] = None)
@overload
def TrustAnchor(resource_name: str,
opts: Optional[ResourceOptions] = None,
source: Optional[TrustAnchorSourceArgs] = None,
enabled: Optional[bool] = None,
name: Optional[str] = None,
notification_settings: Optional[Sequence[TrustAnchorNotificationSettingArgs]] = None,
tags: Optional[Mapping[str, str]] = None)func NewTrustAnchor(ctx *Context, name string, args TrustAnchorArgs, opts ...ResourceOption) (*TrustAnchor, error)public TrustAnchor(string name, TrustAnchorArgs args, CustomResourceOptions? opts = null)
public TrustAnchor(String name, TrustAnchorArgs args)
public TrustAnchor(String name, TrustAnchorArgs args, CustomResourceOptions options)
type: aws:rolesanywhere:TrustAnchor
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args TrustAnchorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args TrustAnchorArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args TrustAnchorArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args TrustAnchorArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args TrustAnchorArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var trustAnchorResource = new Aws.RolesAnywhere.TrustAnchor("trustAnchorResource", new()
{
Source = new Aws.RolesAnywhere.Inputs.TrustAnchorSourceArgs
{
SourceData = new Aws.RolesAnywhere.Inputs.TrustAnchorSourceSourceDataArgs
{
AcmPcaArn = "string",
X509CertificateData = "string",
},
SourceType = "string",
},
Enabled = false,
Name = "string",
NotificationSettings = new[]
{
new Aws.RolesAnywhere.Inputs.TrustAnchorNotificationSettingArgs
{
Channel = "string",
ConfiguredBy = "string",
Enabled = false,
Event = "string",
Threshold = 0,
},
},
Tags =
{
{ "string", "string" },
},
});
example, err := rolesanywhere.NewTrustAnchor(ctx, "trustAnchorResource", &rolesanywhere.TrustAnchorArgs{
Source: &rolesanywhere.TrustAnchorSourceArgs{
SourceData: &rolesanywhere.TrustAnchorSourceSourceDataArgs{
AcmPcaArn: pulumi.String("string"),
X509CertificateData: pulumi.String("string"),
},
SourceType: pulumi.String("string"),
},
Enabled: pulumi.Bool(false),
Name: pulumi.String("string"),
NotificationSettings: rolesanywhere.TrustAnchorNotificationSettingArray{
&rolesanywhere.TrustAnchorNotificationSettingArgs{
Channel: pulumi.String("string"),
ConfiguredBy: pulumi.String("string"),
Enabled: pulumi.Bool(false),
Event: pulumi.String("string"),
Threshold: pulumi.Int(0),
},
},
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var trustAnchorResource = new TrustAnchor("trustAnchorResource", TrustAnchorArgs.builder()
.source(TrustAnchorSourceArgs.builder()
.sourceData(TrustAnchorSourceSourceDataArgs.builder()
.acmPcaArn("string")
.x509CertificateData("string")
.build())
.sourceType("string")
.build())
.enabled(false)
.name("string")
.notificationSettings(TrustAnchorNotificationSettingArgs.builder()
.channel("string")
.configuredBy("string")
.enabled(false)
.event("string")
.threshold(0)
.build())
.tags(Map.of("string", "string"))
.build());
trust_anchor_resource = aws.rolesanywhere.TrustAnchor("trustAnchorResource",
source={
"source_data": {
"acm_pca_arn": "string",
"x509_certificate_data": "string",
},
"source_type": "string",
},
enabled=False,
name="string",
notification_settings=[{
"channel": "string",
"configured_by": "string",
"enabled": False,
"event": "string",
"threshold": 0,
}],
tags={
"string": "string",
})
const trustAnchorResource = new aws.rolesanywhere.TrustAnchor("trustAnchorResource", {
source: {
sourceData: {
acmPcaArn: "string",
x509CertificateData: "string",
},
sourceType: "string",
},
enabled: false,
name: "string",
notificationSettings: [{
channel: "string",
configuredBy: "string",
enabled: false,
event: "string",
threshold: 0,
}],
tags: {
string: "string",
},
});
type: aws:rolesanywhere:TrustAnchor
properties:
enabled: false
name: string
notificationSettings:
- channel: string
configuredBy: string
enabled: false
event: string
threshold: 0
source:
sourceData:
acmPcaArn: string
x509CertificateData: string
sourceType: string
tags:
string: string
TrustAnchor Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The TrustAnchor resource accepts the following input properties:
- Source
Trust
Anchor Source - The source of trust, documented below
- Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Name string
- The name of the Trust Anchor.
- Notification
Settings List<TrustAnchor Notification Setting> - Dictionary<string, string>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- Source
Trust
Anchor Source Args - The source of trust, documented below
- Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Name string
- The name of the Trust Anchor.
- Notification
Settings []TrustAnchor Notification Setting Args - map[string]string
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- source
Trust
Anchor Source - The source of trust, documented below
- enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- name String
- The name of the Trust Anchor.
- notification
Settings List<TrustAnchor Notification Setting> - Map<String,String>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- source
Trust
Anchor Source - The source of trust, documented below
- enabled boolean
- Whether or not the Trust Anchor should be enabled.
- name string
- The name of the Trust Anchor.
- notification
Settings TrustAnchor Notification Setting[] - {[key: string]: string}
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- source
Trust
Anchor Source Args - The source of trust, documented below
- enabled bool
- Whether or not the Trust Anchor should be enabled.
- name str
- The name of the Trust Anchor.
- notification_
settings Sequence[TrustAnchor Notification Setting Args] - Mapping[str, str]
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
- source Property Map
- The source of trust, documented below
- enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- name String
- The name of the Trust Anchor.
- notification
Settings List<Property Map> - Map<String>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level.
Outputs
All input properties are implicitly available as output properties. Additionally, the TrustAnchor resource produces the following output properties:
Look up Existing TrustAnchor Resource
Get an existing TrustAnchor resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: TrustAnchorState, opts?: CustomResourceOptions): TrustAnchor@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
arn: Optional[str] = None,
enabled: Optional[bool] = None,
name: Optional[str] = None,
notification_settings: Optional[Sequence[TrustAnchorNotificationSettingArgs]] = None,
source: Optional[TrustAnchorSourceArgs] = None,
tags: Optional[Mapping[str, str]] = None,
tags_all: Optional[Mapping[str, str]] = None) -> TrustAnchorfunc GetTrustAnchor(ctx *Context, name string, id IDInput, state *TrustAnchorState, opts ...ResourceOption) (*TrustAnchor, error)public static TrustAnchor Get(string name, Input<string> id, TrustAnchorState? state, CustomResourceOptions? opts = null)public static TrustAnchor get(String name, Output<String> id, TrustAnchorState state, CustomResourceOptions options)resources: _: type: aws:rolesanywhere:TrustAnchor get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Arn string
- Amazon Resource Name (ARN) of the Trust Anchor
- Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Name string
- The name of the Trust Anchor.
- Notification
Settings List<TrustAnchor Notification Setting> - Source
Trust
Anchor Source - The source of trust, documented below
- Dictionary<string, string>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Dictionary<string, string>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
- Arn string
- Amazon Resource Name (ARN) of the Trust Anchor
- Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Name string
- The name of the Trust Anchor.
- Notification
Settings []TrustAnchor Notification Setting Args - Source
Trust
Anchor Source Args - The source of trust, documented below
- map[string]string
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - map[string]string
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
- arn String
- Amazon Resource Name (ARN) of the Trust Anchor
- enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- name String
- The name of the Trust Anchor.
- notification
Settings List<TrustAnchor Notification Setting> - source
Trust
Anchor Source - The source of trust, documented below
- Map<String,String>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String,String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
- arn string
- Amazon Resource Name (ARN) of the Trust Anchor
- enabled boolean
- Whether or not the Trust Anchor should be enabled.
- name string
- The name of the Trust Anchor.
- notification
Settings TrustAnchor Notification Setting[] - source
Trust
Anchor Source - The source of trust, documented below
- {[key: string]: string}
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - {[key: string]: string}
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
- arn str
- Amazon Resource Name (ARN) of the Trust Anchor
- enabled bool
- Whether or not the Trust Anchor should be enabled.
- name str
- The name of the Trust Anchor.
- notification_
settings Sequence[TrustAnchor Notification Setting Args] - source
Trust
Anchor Source Args - The source of trust, documented below
- Mapping[str, str]
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Mapping[str, str]
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
- arn String
- Amazon Resource Name (ARN) of the Trust Anchor
- enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- name String
- The name of the Trust Anchor.
- notification
Settings List<Property Map> - source Property Map
- The source of trust, documented below
- Map<String>
- A map of tags to assign to the resource. If configured with a provider
default_tagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String>
- A map of tags assigned to the resource, including those inherited from the provider
default_tagsconfiguration block.
Supporting Types
TrustAnchorNotificationSetting, TrustAnchorNotificationSettingArgs
- Channel string
- Configured
By string - Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Event string
- Threshold int
- Channel string
- Configured
By string - Enabled bool
- Whether or not the Trust Anchor should be enabled.
- Event string
- Threshold int
- channel String
- configured
By String - enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- event String
- threshold Integer
- channel string
- configured
By string - enabled boolean
- Whether or not the Trust Anchor should be enabled.
- event string
- threshold number
- channel str
- configured_
by str - enabled bool
- Whether or not the Trust Anchor should be enabled.
- event str
- threshold int
- channel String
- configured
By String - enabled Boolean
- Whether or not the Trust Anchor should be enabled.
- event String
- threshold Number
TrustAnchorSource, TrustAnchorSourceArgs
- Source
Data TrustAnchor Source Source Data - The data denoting the source of trust, documented below
- Source
Type string - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
- Source
Data TrustAnchor Source Source Data - The data denoting the source of trust, documented below
- Source
Type string - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
- source
Data TrustAnchor Source Source Data - The data denoting the source of trust, documented below
- source
Type String - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
- source
Data TrustAnchor Source Source Data - The data denoting the source of trust, documented below
- source
Type string - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
- source_
data TrustAnchor Source Source Data - The data denoting the source of trust, documented below
- source_
type str - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
- source
Data Property Map - The data denoting the source of trust, documented below
- source
Type String - The type of the source of trust. Must be either
AWS_ACM_PCAorCERTIFICATE_BUNDLE.
TrustAnchorSourceSourceData, TrustAnchorSourceSourceDataArgs
- Acm
Pca stringArn - The ARN of an ACM Private Certificate Authority.
- X509Certificate
Data string
- Acm
Pca stringArn - The ARN of an ACM Private Certificate Authority.
- X509Certificate
Data string
- acm
Pca StringArn - The ARN of an ACM Private Certificate Authority.
- x509Certificate
Data String
- acm
Pca stringArn - The ARN of an ACM Private Certificate Authority.
- x509Certificate
Data string
- acm_
pca_ strarn - The ARN of an ACM Private Certificate Authority.
- x509_
certificate_ strdata
- acm
Pca StringArn - The ARN of an ACM Private Certificate Authority.
- x509Certificate
Data String
Import
Using pulumi import, import aws_rolesanywhere_trust_anchor using its id. For example:
$ pulumi import aws:rolesanywhere/trustAnchor:TrustAnchor example 92b2fbbb-984d-41a3-a765-e3cbdb69ebb1
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
awsTerraform Provider.