Amazon Network Firewall · JSON Structure

Openapi Server Certificate Configuration Structure

Configures the associated Certificate Manager Secure Sockets Layer/Transport Layer Security (SSL/TLS) server certificates and scope settings Network Firewall uses to decrypt traffic in a TLSInspectionConfiguration. For information about working with SSL/TLS certificates for TLS inspection, see Requirements for using SSL/TLS server certficiates with TLS inspection configurations in the Network Firewall Developer Guide.

If a server certificate that's associated with your TLSInspectionConfiguration is revoked, deleted, or expired it can result in client-side TLS errors.

Type: object Properties: 2
FirewallIntrusion DetectionNetwork SecurityVPC

ServerCertificateConfiguration is a JSON Structure definition published by Amazon Network Firewall, describing 2 properties. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

ServerCertificates Scopes

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-network-firewall/refs/heads/main/json-structure/openapi-server-certificate-configuration-structure.json",
  "name": "ServerCertificateConfiguration",
  "description": "<p>Configures the associated Certificate Manager Secure Sockets Layer/Transport Layer Security (SSL/TLS) server certificates and scope settings Network Firewall uses to decrypt traffic in a <a>TLSInspectionConfiguration</a>. For information about working with SSL/TLS certificates for TLS inspection, see <a href=\"https://docs.aws.amazon.com/network-firewall/latest/developerguide/tls-inspection-certificate-requirements.html\"> Requirements for using SSL/TLS server certficiates with TLS inspection configurations</a> in the <i>Network Firewall Developer Guide</i>.</p> <note> <p>If a server certificate that's associated with your <a>TLSInspectionConfiguration</a> is revoked, deleted, or expired it can result in client-side TLS errors.</p> </note>",
  "type": "object",
  "properties": {
    "ServerCertificates": {
      "allOf": [
        {
          "$ref": "#/components/schemas/ServerCertificates"
        },
        {
          "description": "The list of a server certificate configuration's Certificate Manager SSL/TLS certificates."
        }
      ]
    },
    "Scopes": {
      "allOf": [
        {
          "$ref": "#/components/schemas/ServerCertificateScopes"
        },
        {
          "description": "A list of a server certificate configuration's scopes."
        }
      ]
    }
  }
}