You can use the vSphere Client to restore the vSphere Native Key Provider.
You can restore a Native Key Provider in case it was accidentally deleted or if you must perform a disaster recovery.
When you restore a vSphere Native Key Provider, you do not need to back up the key provider again. The initial backup suffices. Continue to maintain the backup file in a secure location.
- Required privilege:
- The key provider backup file.
- The password for the key provider file, if you entered one when you backed up the key provider.
- Log in to the vCenter Server system with the vSphere Client.
- Browse the inventory list and select the vCenter Server instance.
- Click Configure, and under Security click Key Providers.
- Select the vSphere Native Key Provider and click Restore.
- Browse to the file location and select the backup encrypted key file.
The file was saved in PKCS#12 format.
- (Optional) If the file is password protected, enter the password.
- Click Next.
- (Optional) If you decided to use this key provider only with TPM-protected ESXi hosts, select the check box.
- Click Finish.
The vSphere Native Key Provider is restored.