Skip to content

Resource: awsRedshiftHsmClientCertificate

Creates an HSM client certificate that an Amazon Redshift cluster will use to connect to the client's HSM in order to store and retrieve the keys used to encrypt the cluster databases.

Example Usage

/*Provider bindings are generated by running cdktf get.
See https://cdk.tf/provider-generation for more details.*/
import * as aws from "./.gen/providers/aws";
new aws.redshiftHsmClientCertificate.RedshiftHsmClientCertificate(
  this,
  "example",
  {
    hsmClientCertificateIdentifier: "example",
  }
);

Argument Reference

The following arguments are supported:

  • hsmClientCertificateIdentifier - (Required, Forces new resource) The identifier of the HSM client certificate.
  • tags - (Optional) A map of tags to assign to the resource. If configured with a provider defaultTags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Attributes Reference

In addition to all arguments above, the following attributes are exported:

  • arn - Amazon Resource Name (ARN) of the Hsm Client Certificate.
  • hsmClientCertificatePublicKey - The public key that the Amazon Redshift cluster will use to connect to the HSM. You must register the public key in the HSM.
  • tagsAll - A map of tags assigned to the resource, including those inherited from the provider defaultTags configuration block.

Import

Redshift Hsm Client Certificates support import by hsmClientCertificateIdentifier, e.g.,

$ terraform import aws_redshift_hsm_client_certificate.test example