--- title: Getting Started with Datadog description: Datadog, the leading service for cloud-scale monitoring. breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog --- # aws_iot_cert{% #aws_iot_cert %} ## `account_id`{% #account_id %} **Type**: `STRING` ## `ca_certificate_id`{% #ca_certificate_id %} **Type**: `STRING`**Provider name**: `caCertificateId`**Description**: The certificate ID of the CA certificate used to sign this certificate. ## `certificate_arn`{% #certificate_arn %} **Type**: `STRING`**Provider name**: `certificateArn`**Description**: The ARN of the certificate. ## `certificate_id`{% #certificate_id %} **Type**: `STRING`**Provider name**: `certificateId`**Description**: The ID of the certificate. ## `certificate_mode`{% #certificate_mode %} **Type**: `STRING`**Provider name**: `certificateMode`**Description**: The mode of the certificate. `DEFAULT`: A certificate in `DEFAULT` mode is either generated by Amazon Web Services IoT Core or registered with an issuer certificate authority (CA) in `DEFAULT` mode. Devices with certificates in `DEFAULT` mode aren't required to send the Server Name Indication (SNI) extension when connecting to Amazon Web Services IoT Core. However, to use features such as custom domains and VPC endpoints, we recommend that you use the SNI extension when connecting to Amazon Web Services IoT Core. `SNI_ONLY`: A certificate in `SNI_ONLY` mode is registered without an issuer CA. Devices with certificates in `SNI_ONLY` mode must send the SNI extension when connecting to Amazon Web Services IoT Core. For more information about the value for SNI extension, see [Transport security in IoT](https://docs.aws.amazon.com/iot/latest/developerguide/transport-security.html). ## `certificate_pem`{% #certificate_pem %} **Type**: `STRING`**Provider name**: `certificatePem`**Description**: The certificate data, in PEM format. ## `creation_date`{% #creation_date %} **Type**: `TIMESTAMP`**Provider name**: `creationDate`**Description**: The date and time the certificate was created. ## `customer_version`{% #customer_version %} **Type**: `INT32`**Provider name**: `customerVersion`**Description**: The customer version of the certificate. ## `generation_id`{% #generation_id %} **Type**: `STRING`**Provider name**: `generationId`**Description**: The generation ID of the certificate. ## `last_modified_date`{% #last_modified_date %} **Type**: `TIMESTAMP`**Provider name**: `lastModifiedDate`**Description**: The date and time the certificate was last modified. ## `owned_by`{% #owned_by %} **Type**: `STRING`**Provider name**: `ownedBy`**Description**: The ID of the Amazon Web Services account that owns the certificate. ## `previous_owned_by`{% #previous_owned_by %} **Type**: `STRING`**Provider name**: `previousOwnedBy`**Description**: The ID of the Amazon Web Services account of the previous owner of the certificate. ## `status`{% #status %} **Type**: `STRING`**Provider name**: `status`**Description**: The status of the certificate. ## `tags`{% #tags %} **Type**: `UNORDERED_LIST_STRING` ## `transfer_data`{% #transfer_data %} **Type**: `STRUCT`**Provider name**: `transferData`**Description**: The transfer data. - `accept_date`**Type**: `TIMESTAMP`**Provider name**: `acceptDate`**Description**: The date the transfer was accepted. - `reject_date`**Type**: `TIMESTAMP`**Provider name**: `rejectDate`**Description**: The date the transfer was rejected. - `reject_reason`**Type**: `STRING`**Provider name**: `rejectReason`**Description**: The reason why the transfer was rejected. - `transfer_date`**Type**: `TIMESTAMP`**Provider name**: `transferDate`**Description**: The date the transfer took place. - `transfer_message`**Type**: `STRING`**Provider name**: `transferMessage`**Description**: The transfer message. ## `validity`{% #validity %} **Type**: `STRUCT`**Provider name**: `validity`**Description**: When the certificate is valid. - `not_after`**Type**: `TIMESTAMP`**Provider name**: `notAfter`**Description**: The certificate is not valid after this date. - `not_before`**Type**: `TIMESTAMP`**Provider name**: `notBefore`**Description**: The certificate is not valid before this date.