Class CaPool

A CaPool represents a group of CertificateAuthorities that form a trust anchor. A CaPool can be used to manage issuance policies for one or more CertificateAuthority resources and to rotate CA certificates in and out of the trust anchor.

Attributes
NameDescription
strname
Output only. The resource name for this CaPool in the format ``projects/*/locations/*/caPools/*``.
google.cloud.security.privateca_v1.types.CaPool.Tiertier
Required. Immutable. The Tier of this CaPool.
google.cloud.security.privateca_v1.types.CaPool.IssuancePolicyissuance_policy
Optional. The IssuancePolicy to control how Certificates will be issued from this CaPool.
google.cloud.security.privateca_v1.types.CaPool.PublishingOptionspublishing_options
Optional. The PublishingOptions to follow when issuing Certificates from any CertificateAuthority in this CaPool.
Sequence[google.cloud.security.privateca_v1.types.CaPool.LabelsEntry]labels
Optional. Labels with user-defined metadata.

Inheritance

builtins.object > proto.message.Message > CaPool

Classes

IssuancePolicy

IssuancePolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Defines controls over all certificate issuance within a CaPool.

LabelsEntry

LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

API documentation for security.privateca_v1.types.CaPool.LabelsEntry class.

PublishingOptions

PublishingOptions(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Options relating to the publication of each CertificateAuthority's CA certificate and CRLs and their inclusion as extensions in issued Certificates. The options set here apply to certificates issued by any CertificateAuthority in the CaPool.

Tier

Tier(value)

The tier of a CaPool, indicating its supported functionality and/or billing SKU.