New-TrustAuthorityTpm2EndorsementKey

This cmdlet creates a new Trust Authority TPM 2.0 endorsement key in the specified Trust Authority cluster in the Trust Authority vCenter Server system.

Syntax

-Tpm2EndorsementKey  <Tpm2EndorsementKey[]>
-TrustAuthorityCluster  <TrustAuthorityCluster>
[-Server  <VIServer[]>]
[CommonParameters]

Parameters

Required Parameter Name Type Position Features Description
required
Tpm2EndorsementKey
Tpm2EndorsementKey[] named
  • pipeline
  • Specifies the TPM 2.0 endorsement key of the TPM 2.0 device from a workload virtual machine host server that you can use to create Trust Authority TPM 2.0 endorsement key object in the Trust Autority vCenter Server system.
    required
    TrustAuthorityCluster
    TrustAuthorityCluster named
  • pipeline
  • Specifies the Trust Authority cluster in which you want to create a new Trust Authority TPM 2.0 endorsementKey object.
    optional
    Server
    VIServer[] named Specifies the vCenter Server systems on which you want to run the cmdlet. If no value is provided or $null value is passed to this parameter, the command runs on the default servers. For more information about default servers, see the description of the Connect-VIServer cmdlet.

    -Name  <String>
    -TrustAuthorityCluster  <TrustAuthorityCluster>
    [-Certificate  <X509Certificate2>]
    [-CertificateFile  <String>]
    [-PublicKey  <SecureString>]
    [-PublicKeyFile  <String>]
    [-Server  <VIServer[]>]
    [CommonParameters]

    Parameters

    Required Parameter Name Type Position Features Description
    required
    Name
    String named Specifies the name of the new Trust Authority TPM 2.0 endorsement key that you want to create.
    required
    TrustAuthorityCluster
    TrustAuthorityCluster named
  • pipeline
  • Specifies the Trust Authority cluster in which you want to create a new Trust Authority TPM 2.0 endorsementKey object.
    optional
    Certificate
    X509Certificate2 named Specifies the certificate of the TPM 2.0 device from a workload virtual machine host server that you want to use to create a Trust Authority TPM 2.0 endorsement key object in Trust Autority vCenter Server system.
    optional
    CertificateFile
    String named Specifies the certificate file where you can find the TPM 2.0 device's certificate.
    optional
    PublicKey
    SecureString named Specifies the TPM 2.0 device's public key in PEM format.
    optional
    PublicKeyFile
    String named Specifies the file where you can find the TPM 2.0 device's public key.
    optional
    Server
    VIServer[] named Specifies the vCenter Server systems on which you want to run the cmdlet. If no value is provided or $null value is passed to this parameter, the command runs on the default servers. For more information about default servers, see the description of the Connect-VIServer cmdlet.

    -FilePath  <String>
    -TrustAuthorityCluster  <TrustAuthorityCluster>
    [-Server  <VIServer[]>]
    [CommonParameters]

    Parameters

    Required Parameter Name Type Position Features Description
    required
    FilePath
    String named Specifies the file where you can find the TPM 2.0 endorsement key.
    required
    TrustAuthorityCluster
    TrustAuthorityCluster named
  • pipeline
  • Specifies the Trust Authority cluster in which you want to create a new Trust Authority TPM 2.0 endorsementKey object.
    optional
    Server
    VIServer[] named Specifies the vCenter Server systems on which you want to run the cmdlet. If no value is provided or $null value is passed to this parameter, the command runs on the default servers. For more information about default servers, see the description of the Connect-VIServer cmdlet.

    Output

    VMware.VimAutomation.Security.Types.V1.TrustedInfrastructure.TrustAuthorityTpm2EndorsementKey

    Examples


    Example 1

    Connect-VIServer -Server 1.1.1.1 -User root -Password mypasswd
    $tpm2Ek = Get-Tpm2EndorsementKey -Server 1.1.1.1 -VMHost 1.1.1.1
    New-TrustAuthorityTpm2EndorsementKey -TrustAuthorityCluster mycluster -Tpm2EndorsementKey $tpm2Ek -Server trustAuthoritySystem

    Creates a Trust Authority TPM 2.0 endorsement key in the Trust Authority cluster mycluster from the TPM 2.0 endorsement key object $tpm2Ek. You can retrieve the TPM 2.0 endorsement key object from the connected workload virtual machine host server 1.1.1.1.

    Example 2

    Connect-VIServer -Server 1.1.1.1 -User root -Password mypasswd
    Export-Tpm2EndorsementKey -Server 1.1.1.1 -FilePath c:\mypath -VMHost 1.1.1.1
    New-TrustAuthorityTpm2EndorsementKey -TrustAuthorityCluster mycluster -FilePath c:\mypath -Server trustAuthoritySystem

    Creates a Trust Authority TPM 2.0 endorsement key in the Trust Authority cluster mycluster from the c:\mypath file. You can export the TPM 2.0 endorsement key object from the connected workload virtual machine host server 1.1.1.1.

    Example 3

    Connect-VIServer -Server 1.1.1.1 -User root -Password mypasswd
    $tpm2Ek = Get-Tpm2EndorsementKey -Server 1.1.1.1 -VMHost 1.1.1.1
    New-TrustAuthorityTpm2EndorsementKey -TrustAuthorityCluster mycluster -Name mytpm2Ek
    -Certificate $tpm2Ek.Certificate -PublicKey $tpm2Ek.PublicKey -Server trustAuthoritySystem

    Creates a Trust Authority TPM 2.0 endorsement key with the mytpm2Ek name in the Trust Authority cluster mycluster from each property of the Tpm2EndorsementKey object. You can retrieve the TPM 2.0 endorsement key object from the connected workload virtual machine host server 1.1.1.1.

    Related Commands

    Feedback

    Was this page helpful?