Make a certificate authority (CA) version the current version to put it into active use.
A CA version marked as anything other than deprecated, pending activation, or failed can be marked as current when you want to use it. You can't make a CA version that's marked as deprecated the current CA version.
The command you use to make a certificate authority version the current version depends on whether the certificate authority is a root certificate authority or a subordinate certificate authority.
For a root certificate authority, use the oci certs-mgmt certificate-authority update-root-ca-by-generating-config-details command and required parameters to make a certificate authority version the current version:
oci certs-mgmt certificate-authority update-root-ca-by-generating-config-details --certificate-authority-id <CA_OCID> --stage <rotation_state> [OPTIONS]For example:
oci certs-mgmt certificate-authority update-root-ca-by-generating-config-details --certificate-authority-id ocid1.certificateauthority.oc1.<region>.<unique_id> --stage CURRENTFor a subordinate certificate authority, open a command prompt and run oci certs-mgmt certificate-authority update-subordinate-ca-issued-by-internal-ca command required parameters to make a certificate authority version the current version:
oci certs-mgmt certificate-authority update-subordinate-ca-issued-by-internal-ca --certificate-authority-id <CA_OCID> --stage <rotation_state> [OPTIONS]For example:
oci certs-mgmt certificate-authority update-subordinate-ca-issued-by-internal-ca --certificate-authority-id ocid1.certificateauthority.oc1.<region>.<unique_id> --stage CURRENTFor a complete list of parameters and values for CLI commands, see the CLI Command Reference.
Run the UpdateCertificateAuthority operation to make a certificate authority version the current version.