Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec

Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec
Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec

This schema is deprecated as of vSphere API 8.0.3.0 and removed in vSphere API 9.0.0.0.

The Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec schema contains information that describes a TPM endorsement key.

Only one of Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec.public_key or Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec.certificate must be specified.

This schema was added in vSphere API 7.0.0.0.

JSON Example
{
    "name": "string",
    "public_key": "string",
    "certificate": "string"
}
string
name
Required

This property is deprecated as of vSphere API 8.0.3.0 and removed in vSphere API 9.0.0.0.

A unique name for the TPM endorsement key.

The unique name should be something that an administrator can use to easily identify the remote system. For example, the hostname, or hardware UUID.

This property was added in vSphere API 7.0.0.0.

When clients pass a value of this schema as a parameter, the property must be an identifier for the resource type: com.vmware.vcenter.trusted_infrastructure.trust_authority_clusters.attestation.tpm2.EndorsementKey. When operations return a value of this schema as a response, the property will be an identifier for the resource type: com.vmware.vcenter.trusted_infrastructure.trust_authority_clusters.attestation.tpm2.EndorsementKey.

string
public_key
Optional

This property is deprecated as of vSphere API 8.0.3.0 and removed in vSphere API 9.0.0.0.

TPM public endorsement key in PEM format.

This property was added in vSphere API 7.0.0.0.

If missing or null Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec.certificate must be set.

string
certificate
Optional

This property is deprecated as of vSphere API 8.0.3.0 and removed in vSphere API 9.0.0.0.

TPM endorsement key certificate in PEM format.

When a endorsement key certificate is provided, it will be verified against the CA certificate list. Endorsement key certificates that are not signed by one of the CA certificates will be rejected.

Using this format allows for failures to be caught during configuration rather than later during attestation.

This property was added in vSphere API 7.0.0.0.

If missing or null Vcenter TrustedInfrastructure TrustAuthorityClusters Attestation Tpm2 EndorsementKeys CreateSpec.public_key must be set.