Establish Trust Between Hosts in a
vSphere Trust Authority
Cluster and a Workload
vCenter Server

You can use
the
ConsumerPrincipals
interface from the
com.vmware.vcenter.trusted_infrastructure.trust_authority_clusters
package
to perform trust management operations.
  • Verify that you have access to a working
    vSphere Trust Authority
    environment.
  • Verify that you have Trusted Infrastructure administrative privileges.
You can establish and remove trust between a Workload
vCenter Server
and the hosts in a
vSphere Trust Authority
Cluster. You can also list all Workload
vCenter Server
instances that have established trust with the host in a
vSphere Trust Authority
Cluster.
  1. Establish trust between a
    vSphere Trust Authority
    Cluster and a Workload
    vCenter Server
    by creating a profile, so that the Workload
    vCenter Server
    can retrieve the health status of the
    vSphere Trust Authority
    components
    by calling the
    create_Task(java.lang.String cluster, ConsumerPrincipalsTypes.CreateSpec spec)
    method of the
    ConsumerPrincipals
    interface
    .
  2. Remove the trust between a Workload
    vCenter Server
    and the hosts in the
    vSphere Trust Authority
    Cluster, so that the Workload
    vCenter Server
    stops using the hosts for attestation
    by calling the
    delete_Task(java.lang.String cluster, java.lang.String profile)
    method of the
    ConsumerPrincipals
    interface
    .
  3. List all profiles which the
    vSphere Trust Authority
    Cluster trusts
    by calling the
    list_Task(java.lang.String cluster, ConsumerPrincipalsTypes.FilterSpec spec)
    method of the
    ConsumerPrincipals
    interface
    .