Upload client certificate

akamai_mtlskeystore_client_certificate_upload

📘

Hello. Just a note to let you know the underlying API on which this resource is built is general release and has been vetted, but because this is a new feature for our Terraform provider, we've given it beta label.

This status just means we've paused for a bit to get your feedback to make sure this resource works like you need and expect.

Upload a signed third-party client certificate version with the AWAITING_SIGNED_CERTIFICATE status.

resource "akamai_mtlskeystore_client_certificate_upload" "example-upload" {
  client_certificate_id = 12345
  version_number        = 1
  signed_certificate    = <<-EOT
        -----BEGIN CERTIFICATE-----
        nMIID <sample - removed for readability> .... nMweq
        -----END CERTIFICATE-----
    EOT
  trust_chain           = <<-EOT
        -----BEGIN CERTIFICATE-----
        nMIID <sample - removed for readability> .... nMweq
        -----END CERTIFICATE-----
    EOT
  wait_for_deployment   = true
  timeouts = {
    create = "20m"
    update = "20m"
  }
}
data "local_file" "cert" {
  filename = "acme_certificate.example.signed_certificate_pem"
}

data "local_file" "chain" {
  filename = "acme_certificate.example.trust_chain_pem"
}

resource "akamai_client_certificate_version_upload" "example-upload" {
  depends_on = [
    akamai_mtls_keystore_client_certificate_third_party.my-third-party-cert
  ]
  client_certificate_id = akamai_mtls_keystore_client_certificate_third_party.my-third-party-cert.id
  version_number        = 1
  signed_certificate    = data.local_file.cert.content
  trust_chain           = data.local_file.chain.content
  wait_for_deployment   = true
}

Arguments

Send all the required arguments to upload a signed third-party client certificate.

Attribute Required Description
client_certificate_id Your client certificate's ID.
version_number Your client certificate's version number.
signed_certificate The signed certificate to upload.
trust_chain The trust chain linked to the signed certificate.
wait_for_deployment When set to true, this waits for the deployment of the uploaded certificate. Defaults to true if not set.
auto_acknowledge_warnings When set to true, this automatically acknowledges all warnings. Defaults to false if not set.
timeouts Uses the create and update arguments to override the HashiCorp processing timeout. By default, it's 30 minutes. Value is a string containing a number and its time reference, h, m, s. You can pass one, two, or all values. For example:
  • 1h3m5s
  • 2h5m
  • 3m

Attributes

There is no default standard output. Upon upload, the last line of the process log contains a success message.

Adding an output block returns the details you provided upon upload and the computed version_guid attribute that indicates the client certificate's version ID. Use this attribute's value to configure the mutual authentication (mTLS) session between the origin and edge servers in Property Manager's mTLS Origin Keystore behavior.