IAMRolesAnywhere / Client / enable_crl

enable_crl#

IAMRolesAnywhere.Client.enable_crl(**kwargs)#

Enables a certificate revocation list (CRL). When enabled, certificates stored in the CRL are unauthorized to receive session credentials.

**Required permissions: ** rolesanywhere:EnableCrl.

See also: AWS API Documentation

Request Syntax

response = client.enable_crl(
    crlId='string'
)
Parameters:

crlId (string) –

[REQUIRED]

The unique identifier of the certificate revocation list (CRL).

Return type:

dict

Returns:

Response Syntax

{
    'crl': {
        'createdAt': datetime(2015, 1, 1),
        'crlArn': 'string',
        'crlData': b'bytes',
        'crlId': 'string',
        'enabled': True|False,
        'name': 'string',
        'trustAnchorArn': 'string',
        'updatedAt': datetime(2015, 1, 1)
    }
}

Response Structure

  • (dict) –

    • crl (dict) –

      The state of the certificate revocation list (CRL) after a read or write operation.

      • createdAt (datetime) –

        The ISO-8601 timestamp when the certificate revocation list (CRL) was created.

      • crlArn (string) –

        The ARN of the certificate revocation list (CRL).

      • crlData (bytes) –

        The state of the certificate revocation list (CRL) after a read or write operation.

      • crlId (string) –

        The unique identifier of the certificate revocation list (CRL).

      • enabled (boolean) –

        Indicates whether the certificate revocation list (CRL) is enabled.

      • name (string) –

        The name of the certificate revocation list (CRL).

      • trustAnchorArn (string) –

        The ARN of the TrustAnchor the certificate revocation list (CRL) will provide revocation for.

      • updatedAt (datetime) –

        The ISO-8601 timestamp when the certificate revocation list (CRL) was last updated.

Exceptions

  • IAMRolesAnywhere.Client.exceptions.ResourceNotFoundException

  • IAMRolesAnywhere.Client.exceptions.AccessDeniedException