get_certificate_authority_csr

get_certificate_authority_csr(**kwargs)

Retrieves the certificate signing request (CSR) for your private certificate authority (CA). The CSR is created when you call the CreateCertificateAuthority action. Sign the CSR with your Amazon Web Services Private CA-hosted or on-premises root or subordinate CA. Then import the signed certificate back into Amazon Web Services Private CA by calling the ImportCertificateAuthorityCertificate action. The CSR is returned as a base64 PEM-encoded string.

See also: AWS API Documentation

Request Syntax

response = client.get_certificate_authority_csr(
    CertificateAuthorityArn='string'
)
Parameters
CertificateAuthorityArn (string) --

[REQUIRED]

The Amazon Resource Name (ARN) that was returned when you called the CreateCertificateAuthority action. This must be of the form:

arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
Return type
dict
Returns
Response Syntax
{
    'Csr': 'string'
}

Response Structure

  • (dict) --
    • Csr (string) --

      The base64 PEM-encoded certificate signing request (CSR) for your private CA certificate.

Exceptions

  • ACMPCA.Client.exceptions.RequestInProgressException
  • ACMPCA.Client.exceptions.RequestFailedException
  • ACMPCA.Client.exceptions.ResourceNotFoundException
  • ACMPCA.Client.exceptions.InvalidArnException
  • ACMPCA.Client.exceptions.InvalidStateException