CertificateAuthority

edit

The certificate authority used to sign the certificates of this deployment

Properties

edit
public_certificates (array[PublicCertificate], required)
The certificates used by this certificate authority. The active certificate is the one that has been used to sign the current certificates of the Elasticsearch instances. All others are either certificates used in the past or certificates that will be used in the future when the currently active certificate expires.
recommended_trust_restriction (string, required)
The trust restriction expression to use that would provide trust with the Elasticsearch nodes of this deployment

Example

edit
{
   "public_certificates" : [
      {
         "active" : true,
         "metadata" : {
            "fingerprint" : "string",
            "valid_from" : "2019-01-01T00:00:00Z",
            "valid_to" : "2019-01-01T00:00:00Z"
         },
         "pem" : "string"
      }
   ],
   "recommended_trust_restriction" : "string"
}