TOP VCF technology

VMware Cloud Foundation

ESXi vCenter VCF vSphere

Useful command for KMS vCenter for ESXi hosts

By Kader #Encryption, #esx, #key provider, #kms, #nkp, #secure boot, #tpm esxi 
#Verify that the ESXi host is in TPM mode
esxcli system settings encryption get

#If the Mode appears as NONE, you must enable the TPM in the firmware of the host, and set the mode
esxcli system settings encryption set --mode=TPM

#Enable secure boot in the firmware of the host then run this command
esxcli system settings encryption set --require-secure-boot=T

#To enable key persistence (if reboot esxi host and kms is not available) 
esxcli system security keypersistence enable

#To save the setting
/sbin/auto-backup.sh

#Secure ESXi Configuration Recovery Key
esxcli system settings encryption recovery list

#To disable persistence
esxcli system security keypersistence disable --remove-all-stored-keys

By Kader

Related Post

VCF

Cloud Foundation 5.0 using the Holodeck – DNS Entries

Ray
VCF

Cloud Foundation 5.0 using the Holodeck – additional VLANs for other usecases

Ray
VCF

Edge build API / VyOS 1.5 configuration for VLC VCF 2024 for 172.16.x.x network

Kader

You Missed

VCF

Cloud Foundation 5.0 using the Holodeck – DNS Entries

VCF

Cloud Foundation 5.0 using the Holodeck – additional VLANs for other usecases

ESXi vCenter VCF vSphere

Useful command for KMS vCenter for ESXi hosts

VCF

Edge build API / VyOS 1.5 configuration for VLC VCF 2024 for 172.16.x.x network