Values.OcspConfigurationSourceContains information to enable and configure Online Certificate Status Protocol (OCSP) for validating certificate revocation status. When you revoke a certificate, OCSP responses may take up to 60 minutes to reflect the new status.
type nonrec t = {enabled : Boolean.t;Flag enabling use of the Online Certificate Status Protocol (OCSP) for validating certificate revocation status.
*)ocspCustomCname : CnameString.t option;By default, Amazon Web Services Private CA injects an Amazon Web Services domain into certificates being validated by the Online Certificate Status Protocol (OCSP). A customer can alternatively use this object to define a CNAME specifying a customized OCSP domain. The content of a Canonical Name (CNAME) record must conform to RFC2396 restrictions on the use of special characters in URIs. Additionally, the value of the CNAME must not include a protocol prefix such as "http://" or "https://". For more information, see Customizing Online Certificate Status Protocol (OCSP) in the Amazon Web Services Private Certificate Authority User Guide.
*)}val to_value :
t ->
[> `Structure of
(string * [> `Boolean of Boolean.t | `String of CnameString.t ]) list ]