class Aws::KMS::Types::CreateCustomKeyStoreRequest
@note When making an API call, you may pass CreateCustomKeyStoreRequest
data as a hash: { custom_key_store_name: "CustomKeyStoreNameType", # required cloud_hsm_cluster_id: "CloudHsmClusterIdType", # required trust_anchor_certificate: "TrustAnchorCertificateType", # required key_store_password: "KeyStorePasswordType", # required }
@!attribute [rw] custom_key_store_name
Specifies a friendly name for the custom key store. The name must be unique in your Amazon Web Services account. @return [String]
@!attribute [rw] cloud_hsm_cluster_id
Identifies the CloudHSM cluster for the custom key store. Enter the cluster ID of any active CloudHSM cluster that is not already associated with a custom key store. To find the cluster ID, use the [DescribeClusters][1] operation. [1]: https://docs.aws.amazon.com/cloudhsm/latest/APIReference/API_DescribeClusters.html @return [String]
@!attribute [rw] trust_anchor_certificate
Enter the content of the trust anchor certificate for the cluster. This is the content of the `customerCA.crt` file that you created when you [initialized the cluster][1]. [1]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/initialize-cluster.html @return [String]
@!attribute [rw] key_store_password
Enter the password of the [ `kmsuser` crypto user (CU) account][1] in the specified CloudHSM cluster. KMS logs into the cluster as this user to manage key material on your behalf. The password must be a string of 7 to 32 characters. Its value is case sensitive. This parameter tells KMS the `kmsuser` account password; it does not change the password in the CloudHSM cluster. [1]: https://docs.aws.amazon.com/kms/latest/developerguide/key-store-concepts.html#concept-kmsuser @return [String]
@see docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/CreateCustomKeyStoreRequest AWS API Documentation
Constants
- SENSITIVE