CertificateAuthorityedit

The certificate authority used to sign the certificates of this deployment

Propertiesedit

public_certificates (array[PublicCertificate], required)
The certificates used by this certificate authority. The active certificate is the one that has been used to sign the current certificates of the Elasticsearch instances. All others are either certificates used in the past or certificates that will be used in the future when the currently active certificate expires.
recommended_trust_restriction (string, required)
The trust restriction expression to use that would provide trust with the Elasticsearch nodes of this deployment

Exampleedit

{
   "public_certificates" : [
      {
         "active" : true,
         "metadata" : {
            "fingerprint" : "string",
            "valid_from" : "2019-01-01T00:00:00Z",
            "valid_to" : "2019-01-01T00:00:00Z"
         },
         "pem" : "string"
      }
   ],
   "recommended_trust_restriction" : "string"
}