An idiomatic C++ client library for theCertificate Authority API. The Certificate Authority Service API is a highly-available, scalable service that enables you to simplify and automate the management of private certificate authorities (CAs) while staying in control of your private keys.
While this library isGA, please note Google Cloud C++ client libraries donotfollowSemantic Versioning.
Quickstart
The following shows the code that you'll run in thegoogle/cloud/privateca/quickstart/directory, which should give you a taste of the Certificate Authority API C++ client library API.
The library automatically retries requests that fail with transient errors, and usesexponential backoffto backoff between retries. Application developers can override the default policies.
More Information
Error Handling- describes how the library reports errors.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[[["\u003cp\u003eThis webpage provides documentation for the Certificate Authority API C++ client library, which is currently at version 2.11.0, but it also lists all the versions available, with the latest being 2.37.0-rc.\u003c/p\u003e\n"],["\u003cp\u003eThe library facilitates the management of private certificate authorities (CAs) via a scalable service, enabling users to automate CA tasks while maintaining control of private keys.\u003c/p\u003e\n"],["\u003cp\u003eThe primary class for interacting with the API is \u003ccode\u003eprivateca_v1::CertificateAuthorityServiceClient\u003c/code\u003e, which exposes all Remote Procedure Calls (RPCs) as its member functions.\u003c/p\u003e\n"],["\u003cp\u003eThe library automatically manages retries for transient errors and uses exponential backoff to ensure requests eventually succeed.\u003c/p\u003e\n"],["\u003cp\u003eThe C++ client libraries do not follow semantic versioning.\u003c/p\u003e\n"]]],[],null,["Version 2.11.0keyboard_arrow_down\n\n- [2.42.0-rc (latest)](/cpp/docs/reference/privateca/latest)\n- [2.41.0](/cpp/docs/reference/privateca/2.41.0)\n- [2.40.0](/cpp/docs/reference/privateca/2.40.0)\n- [2.39.0](/cpp/docs/reference/privateca/2.39.0)\n- [2.38.0](/cpp/docs/reference/privateca/2.38.0)\n- [2.37.0](/cpp/docs/reference/privateca/2.37.0)\n- [2.36.0](/cpp/docs/reference/privateca/2.36.0)\n- [2.35.0](/cpp/docs/reference/privateca/2.35.0)\n- [2.34.0](/cpp/docs/reference/privateca/2.34.0)\n- [2.33.0](/cpp/docs/reference/privateca/2.33.0)\n- [2.32.0](/cpp/docs/reference/privateca/2.32.0)\n- [2.31.0](/cpp/docs/reference/privateca/2.31.0)\n- [2.30.0](/cpp/docs/reference/privateca/2.30.0)\n- [2.29.0](/cpp/docs/reference/privateca/2.29.0)\n- [2.28.0](/cpp/docs/reference/privateca/2.28.0)\n- [2.27.0](/cpp/docs/reference/privateca/2.27.0)\n- [2.26.0](/cpp/docs/reference/privateca/2.26.0)\n- [2.25.1](/cpp/docs/reference/privateca/2.25.1)\n- [2.24.0](/cpp/docs/reference/privateca/2.24.0)\n- [2.23.0](/cpp/docs/reference/privateca/2.23.0)\n- [2.22.1](/cpp/docs/reference/privateca/2.22.1)\n- [2.21.0](/cpp/docs/reference/privateca/2.21.0)\n- [2.20.0](/cpp/docs/reference/privateca/2.20.0)\n- [2.19.0](/cpp/docs/reference/privateca/2.19.0)\n- [2.18.0](/cpp/docs/reference/privateca/2.18.0)\n- [2.17.0](/cpp/docs/reference/privateca/2.17.0)\n- [2.16.0](/cpp/docs/reference/privateca/2.16.0)\n- [2.15.1](/cpp/docs/reference/privateca/2.15.1)\n- [2.14.0](/cpp/docs/reference/privateca/2.14.0)\n- [2.13.0](/cpp/docs/reference/privateca/2.13.0)\n- [2.12.0](/cpp/docs/reference/privateca/2.12.0)\n- [2.11.0](/cpp/docs/reference/privateca/2.11.0) \n\nCertificate Authority API C++ Client Library\n============================================\n\nAn idiomatic C++ client library for the [Certificate Authority API](https://cloud.google.com/certificate-authority-service/docs). The Certificate Authority Service API is a highly-available, scalable service that enables you to simplify and automate the management of private certificate authorities (CAs) while staying in control of your private keys.\n\nWhile this library is **GA** , please note Google Cloud C++ client libraries do **not** follow [Semantic Versioning](https://semver.org/).\n\n### Quickstart\n\nThe following shows the code that you'll run in the `google/cloud/privateca/quickstart/` directory, which should give you a taste of the Certificate Authority API C++ client library API. \n\n #include \"google/cloud/privateca/v1/certificate_authority_client.h\"\n #include \u003ciostream\u003e\n\n int main(int argc, char* argv[]) try {\n if (argc != 3) {\n std::cerr \u003c\u003c \"Usage: \" \u003c\u003c argv[0] \u003c\u003c \" project-id location-id\\n\";\n return 1;\n }\n\n namespace privateca = ::google::cloud::privateca_v1;\n auto client = privateca::CertificateAuthorityServiceClient(\n privateca::MakeCertificateAuthorityServiceConnection());\n\n auto const ca_pool =\n \"projects/\" + std::string(argv[1]) + \"/locations/\" + std::string(argv[2]);\n for (auto r : client.ListCaPools(ca_pool)) {\n if (!r) throw std::move(r).status();\n std::cout \u003c\u003c r-\u003eDebugString() \u003c\u003c \"\\n\";\n }\n\n return 0;\n } catch (google::cloud::Status const& status) {\n std::cerr \u003c\u003c \"google::cloud::Status thrown: \" \u003c\u003c status \u003c\u003c \"\\n\";\n return 1;\n }\n\n### Main classes\n\nThe main class in this library is [`privateca_v1::CertificateAuthorityServiceClient`](/cpp/docs/reference/privateca/2.11.0/classgoogle_1_1cloud_1_1privateca__v1_1_1CertificateAuthorityServiceClient). All RPCs are exposed as member functions of this class. Other classes provide helpers, configuration parameters, and infrastructure to mock [`privateca_v1::CertificateAuthorityServiceClient`](/cpp/docs/reference/privateca/2.11.0/classgoogle_1_1cloud_1_1privateca__v1_1_1CertificateAuthorityServiceClient) when testing your application.\n\n### Retry, Backoff, and Idempotency Policies.\n\nThe library automatically retries requests that fail with transient errors, and uses [exponential backoff](https://en.wikipedia.org/wiki/Exponential_backoff) to backoff between retries. Application developers can override the default policies.\n\n### More Information\n\n- [Error Handling](https://cloud.google.com/cpp/docs/reference/common/latest/common-error-handling.html) - describes how the library reports errors.\n- [How to Override the Default Endpoint](/cpp/docs/reference/privateca/2.11.0/privateca-override-endpoint) - describes how to override the default endpoint.\n- [How to Override the Authentication Credentials](/cpp/docs/reference/privateca/2.11.0/privateca-override-authentication) - describes how to change the authentication credentials used by the library.\n- [Environment Variables](/cpp/docs/reference/privateca/2.11.0/privateca-env) - describes environment variables that can configure the behavior of the library."]]
