Certificate Manager TrustConfig

Certificate Manager TrustConfig in Google Cloud is a resource that defines trust stores and trust anchors used for certificate validation. It allows you to configure how certificates are trusted within your environment, including specifying custom certificate authorities or system roots. This helps manage secure communication and authentication for services that rely on TLS or mTLS connections.

gcp.certificatemanager_trust_config

Fields

TitleIDTypeData TypeDescription
_keycorestring
allowlisted_certificatescorejsonOptional. A certificate matching an allowlisted certificate is always considered valid as long as the certificate is parseable, proof of private key possession is established, and constraints on the certificate's SAN field are met.
ancestorscorearray<string>
create_timecoretimestampOutput only. The creation timestamp of a TrustConfig.
datadog_display_namecorestring
descriptioncorestringOptional. One or more paragraphs of text description of a TrustConfig.
etagcorestringThis checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding.
labelscorearray<string>Optional. Set of labels associated with a TrustConfig.
namecorestringIdentifier. A user-defined name of the trust config. TrustConfig names must be unique globally and match pattern `projects/*/locations/*/trustConfigs/*`.
organization_idcorestring
parentcorestring
project_idcorestring
project_numbercorestring
region_idcorestring
resource_namecorestring
tagscorehstore_csv
trust_storescorejsonOptional. Set of trust stores to perform validation against. This field is supported when TrustConfig is configured with Load Balancers, currently not supported for SPIFFE certificate validation. Only one TrustStore specified is currently allowed.
update_timecoretimestampOutput only. The last update timestamp of a TrustConfig.
zone_idcorestring