Amazon Private CA · Capability
Amazon Private CA PKI Management
Workflow capability for managing private PKI infrastructure using Amazon Private CA. Combines certificate authority management, certificate issuance, revocation, and audit reporting for security engineers and platform teams.
What You Can Do
POST
Create ca
— Create a new private certificate authority
/v1/certificate-authorities
GET
List cas
— List all certificate authorities
/v1/certificate-authorities
GET
Describe ca
— Get certificate authority details
/v1/certificate-authorities/{ca-id}
POST
Issue certificate
— Issue a new certificate
/v1/certificates
GET
Get certificate
— Retrieve a certificate
/v1/certificates/{cert-id}
DELETE
Revoke certificate
— Revoke a certificate
/v1/certificates/{cert-id}
MCP Tools
create-certificate-authority
Create a new private certificate authority in the CA hierarchy
list-certificate-authorities
List all private certificate authorities
read-only
describe-certificate-authority
Get details about a specific certificate authority
read-only
issue-certificate
Issue a new X.509 certificate from a certificate authority
get-certificate
Retrieve an issued certificate by ARN
read-only
revoke-certificate
Revoke an issued certificate
APIs Used
amazon-private-ca