Optional ReadonlyacmExisting ACM certificate ARN for SSL/TLS. If omitted, a new certificate is created.
Use cases: Existing certificate reuse; Custom SSL management
AWS: ACM certificate for OpenSearch custom endpoint
Validation: Optional; valid ACM certificate ARN matching the domain name
ReadonlydomainFully qualified domain name for the custom endpoint (e.g., search.example.com).
Use cases: Branded domain access; Professional endpoint naming
AWS: OpenSearch custom endpoint domain name
Validation: Required; valid FQDN
Optional Readonlyroute53Route53 hosted zone domain name for DNS record creation (e.g., example.com). Required when route53HostedZoneEnabled is true.
Use cases: Hosted zone selection; Domain-specific DNS configuration
AWS: Route53 hosted zone for CNAME record creation
Validation: Optional; valid domain name matching an existing Route53 hosted zone
Optional Readonlyroute53Enable automatic Route53 CNAME record creation for the custom endpoint.
Use cases: Automated DNS management; Route53 integration
AWS: Route53 CNAME record for OpenSearch custom endpoint
Validation: Optional; boolean
Custom endpoint configuration for branded OpenSearch domain access. Configures custom domain name, SSL certificate, and optional Route53 DNS integration. If acmCertificateArn is omitted, a new ACM certificate is created automatically.
Use cases: Branded domain access; Custom SSL certificates; Automated DNS record creation
AWS: OpenSearch custom endpoint with ACM certificate and optional Route53 CNAME
Validation: domainName required; route53HostedZoneDomainName required when route53HostedZoneEnabled is true