Establish Trust Between Hosts in a vSphere Trust Authority Cluster and a Workload vCenter Server

You can use the ConsumerPrincipals interface from the com.vmware.vcenter.trusted_infrastructure.trust_authority_clusters package to perform trust management operations.

You can establish and remove trust between a Workload vCenter Server and the hosts in a vSphere Trust Authority Cluster. You can also list all Workload vCenter Server instances that have established trust with the host in a vSphere Trust Authority Cluster.

Prerequisites

Verify that you have access to a working vSphere Trust Authority environment.
Verify that you have Trusted Infrastructure administrative privileges.

Procedure

Establish trust between a vSphere Trust Authority Cluster and a Workload vCenter Server by creating a profile, so that the Workload vCenter Server can retrieve the health status of the vSphere Trust Authority components by calling the create_Task(java.lang.String cluster, ConsumerPrincipalsTypes.CreateSpec spec) method of the ConsumerPrincipals interface.
Remove the trust between a Workload vCenter Server and the hosts in the vSphere Trust Authority Cluster, so that the Workload vCenter Server stops using the hosts for attestation by calling the delete_Task(java.lang.String cluster, java.lang.String profile) method of the ConsumerPrincipals interface.
List all profiles which the vSphere Trust Authority Cluster trusts by calling the list_Task(java.lang.String cluster, ConsumerPrincipalsTypes.FilterSpec spec) method of the ConsumerPrincipals interface.