DirectoryService / Client / register_certificate

register_certificate#

DirectoryService.Client.register_certificate(**kwargs)#

Registers a certificate for a secure LDAP or client certificate authentication.

See also: AWS API Documentation

Request Syntax

response = client.register_certificate(
    DirectoryId='string',
    CertificateData='string',
    Type='ClientCertAuth'|'ClientLDAPS',
    ClientCertAuthSettings={
        'OCSPUrl': 'string'
    }
)
Parameters:
  • DirectoryId (string) –

    [REQUIRED]

    The identifier of the directory.

  • CertificateData (string) –

    [REQUIRED]

    The certificate PEM string that needs to be registered.

  • Type (string) – The function that the registered certificate performs. Valid values include ClientLDAPS or ClientCertAuth. The default value is ClientLDAPS.

  • ClientCertAuthSettings (dict) –

    A ClientCertAuthSettings object that contains client certificate authentication settings.

    • OCSPUrl (string) –

      Specifies the URL of the default OCSP server used to check for revocation status. A secondary value to any OCSP address found in the AIA extension of the user certificate.

Return type:

dict

Returns:

Response Syntax

{
    'CertificateId': 'string'
}

Response Structure

  • (dict) –

    • CertificateId (string) –

      The identifier of the certificate.

Exceptions

  • DirectoryService.Client.exceptions.DirectoryUnavailableException

  • DirectoryService.Client.exceptions.DirectoryDoesNotExistException

  • DirectoryService.Client.exceptions.InvalidCertificateException

  • DirectoryService.Client.exceptions.CertificateLimitExceededException

  • DirectoryService.Client.exceptions.CertificateAlreadyExistsException

  • DirectoryService.Client.exceptions.UnsupportedOperationException

  • DirectoryService.Client.exceptions.InvalidParameterException

  • DirectoryService.Client.exceptions.ClientException

  • DirectoryService.Client.exceptions.ServiceException