DomainEndpointOptions - Amazon OpenSearch Service
ContentsSee Also
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

DomainEndpointOptions

Options to configure a custom endpoint for an OpenSearch Service domain.

Contents

CustomEndpoint

The fully qualified URL for the custom endpoint.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 255.

Pattern: ^(((?!-)[A-Za-z0-9-]{0,62}[A-Za-z0-9])\.)+((?!-)[A-Za-z0-9-]{1,62}[A-Za-z0-9])$

Required: No

CustomEndpointCertificateArn

The ARN for your security certificate, managed in AWS Certificate Manager (ACM).

Type: String

Length Constraints: Minimum length of 20. Maximum length of 2048.

Pattern: .*

Required: No

CustomEndpointEnabled

Whether to enable a custom endpoint for the domain.

Type: Boolean

Required: No

EnforceHTTPS

True to require that all traffic to the domain arrive over HTTPS.

Type: Boolean

Required: No

TLSSecurityPolicy

Specify the TLS security policy to apply to the HTTPS endpoint of the domain. The policy can be one of the following values:

  • Policy-Min-TLS-1-0-2019-07: TLS security policy that supports TLS version 1.0 to TLS version 1.2

  • Policy-Min-TLS-1-2-2019-07: TLS security policy that supports only TLS version 1.2

  • Policy-Min-TLS-1-2-PFS-2023-10: TLS security policy that supports TLS version 1.2 to TLS version 1.3 with perfect forward secrecy cipher suites

Type: String

Valid Values: Policy-Min-TLS-1-0-2019-07 | Policy-Min-TLS-1-2-2019-07 | Policy-Min-TLS-1-2-PFS-2023-10

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: