REST API - create

vcenter trusted infrastructure kms services: create

Registers a Key Provider Service instance in this vCenter. This operation was added in vSphere API 7.0.0.0.

Request:

HTTP request

POST https://{server}/api/vcenter/trusted-infrastructure/kms/services
{
    "trusted_CA"{
        "cert_chain"[
            "string",
            "string"
        ]
    },
    "trust_authority_cluster""string",
    "group""string"
}

Body Parameters:

Name Type Description
bold = required
- create_spec The CreateSpec for the new service.
-.address network_address The service's address. This attribute was added in vSphere API 7.0.0.0.

-.trusted_CA x509_cert_chain The service's TLS certificate chain. This attribute was added in vSphere API 7.0.0.0.

-.trusted_CA.cert_chain string[] Certificate chain in base64 format. This attribute was added in vSphere API 7.0.0.0.

-.group string The group determines the Attestation Service instances this Key Provider service can accept reports from. This attribute was added in vSphere API 7.0.0.0.

-.trust_authority_cluster string The cluster specifies the Trust Authority Cluster this Key Provider Service belongs to. This attribute was added in vSphere API 7.0.0.0.

Response:

HTTP Status Code: 201

Response Body Structure:

"obj-103"

Headers:

None

Type:

Name Type Description
bold = required
- string ID of the newly registered Key Provider Service instance.

Errors:

HTTP Status Code Type Description
400 already_exists if there is already a Key Provider Service instance with the same Address.
500 error if there is a generic error.
400 invalid_argument if the CreateSpec contains invalid data.
401 unauthenticated if the user can not be authenticated.