EC2 / Client / get_associated_enclave_certificate_iam_roles
get_associated_enclave_certificate_iam_roles#
- EC2.Client.get_associated_enclave_certificate_iam_roles(**kwargs)#
Returns the IAM roles that are associated with the specified ACM (ACM) certificate. It also returns the name of the Amazon S3 bucket and the Amazon S3 object key where the certificate, certificate chain, and encrypted private key bundle are stored, and the ARN of the KMS key that’s used to encrypt the private key.
See also: AWS API Documentation
Request Syntax
response = client.get_associated_enclave_certificate_iam_roles( CertificateArn='string', DryRun=True|False )
- Parameters:
CertificateArn (string) –
[REQUIRED]
The ARN of the ACM certificate for which to view the associated IAM roles, encryption keys, and Amazon S3 object information.
DryRun (boolean) – Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is
DryRunOperation
. Otherwise, it isUnauthorizedOperation
.
- Return type:
dict
- Returns:
Response Syntax
{ 'AssociatedRoles': [ { 'AssociatedRoleArn': 'string', 'CertificateS3BucketName': 'string', 'CertificateS3ObjectKey': 'string', 'EncryptionKmsKeyId': 'string' }, ] }
Response Structure
(dict) –
AssociatedRoles (list) –
Information about the associated IAM roles.
(dict) –
Information about the associated IAM roles.
AssociatedRoleArn (string) –
The ARN of the associated IAM role.
CertificateS3BucketName (string) –
The name of the Amazon S3 bucket in which the Amazon S3 object is stored.
CertificateS3ObjectKey (string) –
The key of the Amazon S3 object ey where the certificate, certificate chain, and encrypted private key bundle is stored. The object key is formated as follows:
role_arn
/certificate_arn
.EncryptionKmsKeyId (string) –
The ID of the KMS customer master key (CMK) used to encrypt the private key.