delete_policy
(**kwargs)¶Deletes the resource-based policy attached to a private CA. Deletion will remove any access that the policy has granted. If there is no policy attached to the private CA, this action will return successful.
If you delete a policy that was applied through Amazon Web Services Resource Access Manager (RAM), the CA will be removed from all shares in which it was included.
The Certificate Manager Service Linked Role that the policy supports is not affected when you delete the policy.
The current policy can be shown with GetPolicy and updated with PutPolicy.
About Policies
See also: AWS API Documentation
Request Syntax
response = client.delete_policy(
ResourceArn='string'
)
[REQUIRED]
The Amazon Resource Number (ARN) of the private CA that will have its policy deleted. You can find the CA's ARN by calling the ListCertificateAuthorities action. The ARN value must have the form arn:aws:acm-pca:region:account:certificate-authority/01234567-89ab-cdef-0123-0123456789ab
.
Exceptions
ACMPCA.Client.exceptions.ConcurrentModificationException
ACMPCA.Client.exceptions.InvalidArnException
ACMPCA.Client.exceptions.InvalidStateException
ACMPCA.Client.exceptions.LockoutPreventedException
ACMPCA.Client.exceptions.RequestFailedException
ACMPCA.Client.exceptions.ResourceNotFoundException