Configure Trusted ESXi Builds on a Cluster Level
ESXi
Builds on a Cluster LevelYou can use
HTTP requests
to manage trusted instances of ESXi
software on a cluster level.- Verify that you have access to a workingvSphere Trust Authorityenvironment.
- Verify that you have Trusted Infrastructure administrative privileges.
You can import, list, remove, and retrieve details
about
ESXi
base images. Some operations require you to specify parameters
in the body of the HTTP request according to your
vSphere Trust Authority
environment.
For details about the syntax of each HTTP request body, see the API Reference
documentation.- ImportESXimetadata as a new trusted base image to each host in avSphere Trust AuthorityCluster.POST https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-clusters/<cluster>/attestation/os/esx/base-images?action=import-from-imgdb&vmw-task=true "YmluYXJ5"You receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.GET https://<vcenter_ip_address_or_fqdn>/api/cis/tasks/<task_ID>
- Retrieve a list of trustedESXibase images in avSphere Trust AuthorityCluster.GET https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-clusters/<cluster>/attestation/os/esx/base-images?version=<value-1>&version=<value-2>&display_name=<value-1>&display_name=<value-2>&health=<value-1>&health=<value-2>&vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.GET https://<vcenter_ip_address_or_fqdn>/api/cis/tasks/<task_ID>
- Remove anESXibase image that should no longer be trusted from avSphere Trust AuthorityCluster.DELETE https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-clusters/<cluster>/attestation/os/esx/base-images/<version>?vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.GET https://<vcenter_ip_address_or_fqdn>/api/cis/tasks/<task_ID>
- Retrieve details about a trustedESXibase image version in avSphere Trust AuthorityCluster.GET https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-clusters/<cluster>/attestation/os/esx/base-images/<version>?vmw-task=trueYou receive the task ID in the response body. You can use the task ID to check the status of the task by running the following HTTP request.GET https://<vcenter_ip_address_or_fqdn>/api/cis/tasks/<task_ID>