PowerCLI Reference

New-TrustAuthorityTpm2CACertificate

Synopsis

This cmdlet creates a new Trust Authority TPM 2.0 Certificate Authority (CA) certificate in the specified Trust Authority Cluster in the Trust Authority vCenter Server system.

Syntax

New-TrustAuthorityTpm2CACertificate [-TrustAuthorityCluster] <TrustAuthorityCluster> -CertificateChain <X509Chain> [-Confirm] [-Name <String>] [-Server <VIServer[]>] [-WhatIf] [<CommonParameters>]

New-TrustAuthorityTpm2CACertificate [-TrustAuthorityCluster] <TrustAuthorityCluster> [-Confirm] -FilePath <String> [-Name <String>] [-Server <VIServer[]>] [-WhatIf] [<CommonParameters>]

Related Commands

Online Version
Export-Tpm2CACertificate
Get-TrustAuthorityTpm2CACertificate
Remove-TrustAuthorityTpm2CACertificate

Detailed Description

This cmdlet creates a new Trust Authority TPM 2.0 CA certificate in the specified Trust Authority cluster in the Trust Authority vCenter Server system.

Parameters

NameTypeDescriptionRequired?Pipeline InputDefault Value
TrustAuthorityClusterTrustAuthorityClusterSpecifies the Trust Authority cluster in which you want to create a new Trust Authority TPM 2.0 CA certificate.trueTrue (ByValue)
CertificateChainX509ChainSpecifies the TPM 2.0 chip's CA certificate chain that you want to use to create a Trust Authority TPM 2.0 CA certificate.trueFalse
ConfirmSwitchParameterIf the value is $true, indicates that the cmdlet asks for confirmation before running. If the value is $false, the cmdlet runs without asking for user confirmation.falseFalse
FilePathStringSpecifies the file where you can find the CA certificates. The file can be in a .crt or .zip format. If the file is in a .zip format, you should name the .crt files in the .zip package as <file>-00.crt, <file>-01.crt... <file>-09.crt. Use the Export-Tpm2CACertificate cmdlet to download the CA certificates from the given TPM 2.0 chip's certificate.trueFalse
NameStringSpecifies the name of the Trust Authority TPM 2.0 CA certificate that you want to create. If it's not specified, the name is the subject key identifier of the certificate which is the leaf-most certificate in the certificate chain.falseFalse
ServerVIServer[]Specifies the vCenter Server systems on which you want to run the cmdlet. If no value is given to this parameter, the command runs on the default servers. For more information about default servers, see the description of the Connect-VIServer cmdlet.falseFalse
WhatIfSwitchParameterIndicates that the cmdlet is run only to display the changes that would be made and actually no objects are modified.falseFalse

Return Type

VMware.VimAutomation.Security.Types.V1.TrustedInfrastructure.TrustAuthorityTpm2CACertificate

Notes

Examples

-------------------------- Example 1 --------------------------

New-TrustAuthorityTpm2CACertificate -TrustAuthorityCluster mycluster -CertificateChain $x509chain

Creates a new Trust Authority TPM 2.0 CA certificate in the Trust Authority cluster mycluster from the given $x509Chain certificate chain.

-------------------------- Example 2 --------------------------

New-TrustAuthorityTpm2CACertificate -TrustAuthorityCluster mycluster -FilePath c:\mypath

Creates a new Trust Authority TPM 2.0 CA certificate in the Trust Authority cluster mycluster from the specified c:\mypath file. The file can be in a .crt or .zip format.

Copyright © VMware, Inc. All rights reserved.