VMware vSphere SDKs and Tools 8.0

8.0 7.0 6.7 6.5

Retrieve
vSphere Trust Authority
 Components Information

You can use
HTTP requests
 to retrieve information about Attestation Service and Key Provider Service instances running on hosts.
  • Verify that you have access to a working
    vSphere Trust Authority
     environment.
  • Verify that you have Trusted Infrastructure administrative privileges.
You can use the retrieved information to connect to the hosts running the
vSphere Trust Authority
 components.
Some operations require you to specify parameters in the body of the HTTP request according to your
vSphere Trust Authority
 environment. For details about the syntax of each HTTP request body, see the
API Reference
 documentation.
  1. Retrieve detailed information, including the certificates, about the Attestation Service instance running on a Trust Authority Host.
    GET https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-hosts/<
    host
    >/attestation/
    You receive the details in the response body. You can use the retrieved information to import the Attestation Service instance into a Workload
    vCenter Server
    .
  2. List Trust Authority Hosts running an Attestation Service instance by using filters.
    POST https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-hosts/attestation?projection=<
    value
    >
    You receive the results that match your criteria in the response body. You can use the retrieved information to review the Attestation Service instances.
  3. Retrieve detailed information, including the certificates, about the Key Provider Service instance running on a Trust Authority Host.
    GET https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-hosts/<
    host
    >/kms/
    You receive the details in the response body. You can use the retrieved information to import the Key Provider Service instance into a Workload
    vCenter Server
    .
  4. List Trust Authority Hosts running a Key Provider Service instance by using filters.
    POST https://<vcenter_ip_address_or_fqdn>/api/vcenter/trusted-infrastructure/trust-authority-hosts/attestation?projection=<
    value
    >kms?projection=<
    value
    >&action=query
    You receive the results that match your criteria in the response body. You can use the retrieved information to review the Key Provider Service instances.

Content feedback and comments