REST API - create

esx trusted infrastructure kms services: create

Adds a new KMS service instance.

Request:

HTTP request

POST https://{server}/api/esx/trusted-infrastructure/kms/services
{
    "trusted_CA"{
        "cert_chain"[
            "string",
            "string"
        ]
    },
    "address"{
        "hostname""string",
        "port"1
    },
    "group""string"
}

Body Parameters:

Name Type Description
bold = required
- create_spec The esx.trusted_infrastructure.kms.services.create_spec for the new service.
-.address network_address The service's address.

-.address.hostname string The IP address or DNS resolvable name of the service.

-.address.port long The port of the service.

Optional. If unset, port 443 will be used.

-.trusted_CA x509_cert_chain The service's TLS certificate chain.

-.trusted_CA.cert_chain string[] Certificate chain in base64 format

-.group string The group identifier determines which attestation service instances this KMS service can communicate with.

If the group attribute values of attestation and KMS records match then those services are associated with each other.

Response:

HTTP Status Code: 201

Response Body Structure:

"obj-103"

Headers:

None

Type:

Name Type Description
bold = required
- string Identifier of the newly registered KMS service instance.

Errors:

HTTP Status Code Type Description
400 already_exists if there is already a KMS service instance with the same esx.trusted_infrastructure.network_address.
400 invalid_argument if the esx.trusted_infrastructure.kms.services.create_spec contains invalid data.
500 unable_to_allocate_resource if the host does not have a required license.
500 error if there is a problem storing the data.
401 unauthenticated if the user can not be authenticated.