Host System Configure Crypto Key
Sets/changes the key to be used for coredump encryption and puts the host in safe state.
This function will make the host crypto safe and unlock all encrypted VMs on the host. When the encryption on the host is enabled for the first time after adding it to vCenter Server, this method will start sending asynchronously all the encryption keys for VMs on the host and cluster to unlock encrypted VMs. This API behaves differently on the ESXi host vs. the vCenter server. Before vSphere 7.0, it is not supported on host, and invoking directly on a host will throw NotSupported fault. Since vSphere 7.0, calling the API on host will make the host crypto safe, but the parameter should not be blank and should only be a key id from a trusted key provider.
Required privileges: Cryptographer.RegisterHost
The unique identifier for the managed object to which the method attaches; the serialized managed object reference for a request has the form moType/moId
, in this case HostSystem/{moId}
.
The vSphere release schema. The current specification covers vSphere 8.0.2.0 APIs.
{
"keyId": {
"_typeName": "string",
"keyId": "string",
"providerId": {
"_typeName": "string",
"id": "string"
}
}
}
No Content