:doc:`IAMRolesAnywhere <../../rolesanywhere>` / Client / enable_crl

**********
enable_crl
**********



.. py:method:: IAMRolesAnywhere.Client.enable_crl(**kwargs)

  

  Enables a certificate revocation list (CRL). When enabled, certificates stored in the CRL are unauthorized to receive session credentials.

   

  **Required permissions:** ``rolesanywhere:EnableCrl``.

  

  See also: `AWS API Documentation <https://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/EnableCrl>`_  


  **Request Syntax**
  ::

    response = client.enable_crl(
        crlId='string'
    )
    
  :type crlId: string
  :param crlId: **[REQUIRED]** 

    The unique identifier of the certificate revocation list (CRL).

    

  
  
  :rtype: dict
  :returns: 
    
    **Response Syntax**

    
    ::

      {
          'crl': {
              'crlId': 'string',
              'crlArn': 'string',
              'name': 'string',
              'enabled': True|False,
              'crlData': b'bytes',
              'trustAnchorArn': 'string',
              'createdAt': datetime(2015, 1, 1),
              'updatedAt': datetime(2015, 1, 1)
          }
      }
      
    **Response Structure**

    

    - *(dict) --* 
      

      - **crl** *(dict) --* 

        The state of the certificate revocation list (CRL) after a read or write operation.

        
        

        - **crlId** *(string) --* 

          The unique identifier of the certificate revocation list (CRL).

          
        

        - **crlArn** *(string) --* 

          The ARN of the certificate revocation list (CRL).

          
        

        - **name** *(string) --* 

          The name of the certificate revocation list (CRL).

          
        

        - **enabled** *(boolean) --* 

          Indicates whether the certificate revocation list (CRL) is enabled.

          
        

        - **crlData** *(bytes) --* 

          The state of the certificate revocation list (CRL) after a read or write operation.

          
        

        - **trustAnchorArn** *(string) --* 

          The ARN of the TrustAnchor the certificate revocation list (CRL) will provide revocation for.

          
        

        - **createdAt** *(datetime) --* 

          The ISO-8601 timestamp when the certificate revocation list (CRL) was created.

          
        

        - **updatedAt** *(datetime) --* 

          The ISO-8601 timestamp when the certificate revocation list (CRL) was last updated.

          
    
  
  **Exceptions**
  
  *   :py:class:`IAMRolesAnywhere.Client.exceptions.ResourceNotFoundException`

  
  *   :py:class:`IAMRolesAnywhere.Client.exceptions.AccessDeniedException`

  