Check Trusted Cluster Health
You can use HTTP requests to retrieve information about the health of the applied
vSphere Trust Authority
component
configurations in a Trusted Cluster.- Verify that you have access to a workingvSphere Trust Authorityenvironment.
- Verify that you have Trusted Infrastructure administrative privileges.
You can retrieve basic and detailed information about the health of Key Provider
Service or Attestation Service configurations applied to a Trusted Cluster with
respect to the desired state. You can also retrieve detailed information about the
health of all applied
vSphere Trust Authority
component configurations in a Trusted Cluster. The
operations require you to specify parameters in the body of the HTTP request
according to your vSphere Trust Authority
environment. For details about the syntax of each HTTP
request body, see the API Reference
documentation.- Retrieve a summary about the health status of all Key Provider Service instances configured for use in a Trusted Cluster.POST https://<server>/api/vcenter/trusted-infrastructure/trusted-clusters/<cluster>/kms/services-applied-config?action=query&vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.
If the operation is successful, you can verify whether all Key Provider Service configurations of the Trusted Cluster are applied successfully and every host in the cluster is consistent with the desired state.GET https://<server>/api/cis/tasks/<task_ID> - Retrieve detailed information about the health status of a specific Key Provider Service instance configured for use in a Trusted Cluster.GET https://<server>/api/vcenter/trusted-infrastructure/trusted-clusters/<cluster>/kms/services-applied-config?vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.
If the operation is successful, you can verify whether the specified Key Provider Service configuration of the Trusted Cluster is applied successfully and every host in the cluster is consistent with the desired state.GET https://<server>/api/cis/tasks/<task_ID> - Retrieve a summary about the health status of all Attestation Service instances configured for use in a Trusted Cluster.POST https://<server>/api/vcenter/trusted-infrastructure/trusted-clusters/<cluster>/attestation/services-applied-config?action=query&vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.
If the operation is successful, you can verify whether all Attestation Service configurations of the Trusted Cluster are applied successfully and every host in the cluster is consistent with the desired state.GET https://<server>/api/cis/tasks/<task_ID> - Retrieve detailed information about the health status of a specific Attestation Service instance configured for use in a Trusted Cluster.GET https://<server>/api/vcenter/trusted-infrastructure/trusted-clusters/<cluster>/attestation/services-applied-config?vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.
If the operation is successful, you can verify whether the specified Attestation Service configuration of the Trusted Cluster is applied successfully and every host in the cluster is consistent with the desired state.GET https://<server>/api/cis/tasks/<task_ID> - Retrieve detailed information about the health status of allvSphere Trust Authoritycomponents configured for use in a Trusted Cluster.GET https://<server>/api/vcenter/trusted-infrastructure/trusted-clusters/<cluster>/services-applied-config?vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.
If the operation is successful, you can verify whether theGET https://<server>/api/cis/tasks/<task_ID>vSphere Trust Authoritycomponent configuration is applied successfully and every host in the cluster is consistent with the desired state.
If there are errors, you can try to remediate the Trusted Cluster. See Remediate a Trusted Cluster.