You can use the vSphere Automation REST API to perform VMware vSphere® Native Key Provider™ operations.
In vSphere 7.0 Update 2 and later, you can use the built-in vSphere Native Key Provider to enable encryption technologies, such as virtual TPMs (vTPM).
vSphere Native Key Provider is included in all vSphere editions and does not require an external key server (also called a Key Management Server (KMS) in the industry). You can also use vSphere Native Key Provider for vSphere Virtual Machine Encryption, but you must purchase the VMware vSphere® Enterprise Plus Edition™.
For details about vSphere Native Key Provider, see the vSphere Security documentation.
The procedures in this chapter are based on the REST API. For details, see the vSphere Automation REST API Reference.