:doc:`EC2 <../../ec2>` / Client / disassociate_enclave_certificate_iam_role

*****************************************
disassociate_enclave_certificate_iam_role
*****************************************



.. py:method:: EC2.Client.disassociate_enclave_certificate_iam_role(**kwargs)

  

  Disassociates an IAM role from an Certificate Manager (ACM) certificate. Disassociating an IAM role from an ACM certificate removes the Amazon S3 object that contains the certificate, certificate chain, and encrypted private key from the Amazon S3 bucket. It also revokes the IAM role's permission to use the KMS key used to encrypt the private key. This effectively revokes the role's permission to use the certificate.

  

  See also: `AWS API Documentation <https://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DisassociateEnclaveCertificateIamRole>`_  


  **Request Syntax**
  ::

    response = client.disassociate_enclave_certificate_iam_role(
        CertificateArn='string',
        RoleArn='string',
        DryRun=True|False
    )
    
  :type CertificateArn: string
  :param CertificateArn: **[REQUIRED]** 

    The ARN of the ACM certificate from which to disassociate the IAM role.

    

  
  :type RoleArn: string
  :param RoleArn: **[REQUIRED]** 

    The ARN of the IAM role to disassociate.

    

  
  :type DryRun: boolean
  :param DryRun: 

    Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is ``DryRunOperation``. Otherwise, it is ``UnauthorizedOperation``.

    

  
  
  :rtype: dict
  :returns: 
    
    **Response Syntax**

    
    ::

      {
          'Return': True|False
      }
      
    **Response Structure**

    

    - *(dict) --* 
      

      - **Return** *(boolean) --* 

        Returns ``true`` if the request succeeds; otherwise, it returns an error.

        
  