Managed Object - CryptoManager(vim.encryption.CryptoManager)

Property of: HostConfigManager, ServiceContent
Extended by: CryptoManagerHost, CryptoManagerKmip
See also: CryptoKeyId, CryptoKeyPlain, CryptoKeyResult
Since: vSphere API Release 6.5

Managed Object Description

Singleton Managed Object used to manage cryptographic keys.

Properties

Name	Type	Description
enabled	xsd:boolean	Indicate if the encryption feature is enabled.

Name

Type

Description

enabled

xsd:boolean

Indicate if the encryption feature is enabled.

Methods

Methods defined in this Managed Object
AddKey, AddKeys, ListKeys, RemoveKey, RemoveKeys

AddKey(addKey)

Add an existing key.

Required Privileges: Cryptographer.ManageKeys

Parameters

Name	Type	Description
_this	ManagedObjectReference	A reference to the CryptoManager used to make the method call.
key	CryptoKeyPlain	[in] The cryptographic key to add. *Since* vSphere API Release 6.5

Name

Type

Description

_this

ManagedObjectReference

A reference to the CryptoManager used to make the method call.

key

CryptoKeyPlain

[in] The cryptographic key to add.

Since vSphere API Release 6.5

Return Value

Type	Description
None

Faults

Type	Description
AlreadyExists	in case the key is already in the key cache
InvalidState	in case the host is not Crypto Safe
RuntimeFault	Thrown if any type of runtime fault is thrown that is not covered by the other faults; for example, a communication error.

Events

Type
None

Show WSDL type definition

         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="AddKey" type="pbm:AddKeyRequestType"/>
         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="AddKeyResponse">
                  <complexType/>
               </element>

AddKeys(addKeys)

Add multiple existing keys.

Required Privileges: Cryptographer.ManageKeys

Parameters

Name	Type	Description
_this	ManagedObjectReference	A reference to the CryptoManager used to make the method call.
keys*	CryptoKeyPlain[]	[in] List of cryptographic keys to add. *Since* vSphere API Release 6.5

Name

Type

Description

_this

ManagedObjectReference

A reference to the CryptoManager used to make the method call.

keys*

CryptoKeyPlain[]

[in] List of cryptographic keys to add.

Since vSphere API Release 6.5

*Need not be set

Return Value

Type	Description
CryptoKeyResult[]	The result for each key operation.

Faults

Type	Description
InvalidState	in case the host is not Crypto Safe
RuntimeFault	Thrown if any type of runtime fault is thrown that is not covered by the other faults; for example, a communication error.

Events

Type
None

Show WSDL type definition

         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="AddKeys" type="pbm:AddKeysRequestType"/>
         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="AddKeysResponse">
                  <complexType>
                     <sequence>
                        <element name="returnval" type="pbm:CryptoKeyResult" minOccurs="0" maxOccurs="unbounded"/>
                     </sequence>
                  </complexType>
               </element>

ListKeys(listKeys)

List keys. * When executed against the host, lists all the keys added to the host's key cache by AddKey/AddKeys. * When executed against the VC, lists all the keys used by the correctly registered VMs, and the host key.

Required Privileges: Cryptographer.ManageKeys

Parameters

Name	Type	Description
_this	ManagedObjectReference	A reference to the CryptoManager used to make the method call.
limit*	xsd:int	[in] maximum keys to return. *Since* vSphere API Release 6.5

Name

Type

Description

_this

ManagedObjectReference

A reference to the CryptoManager used to make the method call.

limit*

xsd:int

[in] maximum keys to return.

Since vSphere API Release 6.5

*Need not be set

Return Value

Type	Description
CryptoKeyId[]	List of known keys.

Faults

Type	Description
RuntimeFault	Thrown if any type of runtime fault is thrown that is not covered by the other faults; for example, a communication error.

Events

Type
None

Show WSDL type definition

         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="ListKeys" type="pbm:ListKeysRequestType"/>
         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="ListKeysResponse">
                  <complexType>
                     <sequence>
                        <element name="returnval" type="pbm:CryptoKeyId" minOccurs="0" maxOccurs="unbounded"/>
                     </sequence>
                  </complexType>
               </element>

RemoveKey(removeKey)

Remove a key (only the UUID is needed to remove). If "force" is set, removal will happen even if the key is in use.

Required Privileges: Cryptographer.ManageKeys

Parameters

Name	Type	Description
_this	ManagedObjectReference	A reference to the CryptoManager used to make the method call.
key	CryptoKeyId	[in] The key to remove. *Since* vSphere API Release 6.5
force	xsd:boolean	[in] Remove the key even if in use or not existent. *Since* vSphere API Release 6.5

Name

Type

Description

_this

ManagedObjectReference

A reference to the CryptoManager used to make the method call.

key

CryptoKeyId

[in] The key to remove.

Since vSphere API Release 6.5

force

xsd:boolean

[in] Remove the key even if in use or not existent.

Since vSphere API Release 6.5

Return Value

Type	Description
None

Faults

Type	Description
ResourceInUse	Thrown if the key is used to encrypt any object and "force" is false.
RuntimeFault	Thrown if any type of runtime fault is thrown that is not covered by the other faults; for example, a communication error.

Events

Type
None

Show WSDL type definition

         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="RemoveKey" type="pbm:RemoveKeyRequestType"/>
         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="RemoveKeyResponse">
                  <complexType/>
               </element>

RemoveKeys(removeKeys)

Remove multiple keys (only the UUID is needed to remove). If "force" is set, removal will happen even if they are in use.

Required Privileges: Cryptographer.ManageKeys

Parameters

Name	Type	Description
_this	ManagedObjectReference	A reference to the CryptoManager used to make the method call.
keys*	CryptoKeyId[]	[in] List of keys to remove. *Since* vSphere API Release 6.5
force	xsd:boolean	[in] Remove the key even if in use. Always successful. *Since* vSphere API Release 6.5

Name

Type

Description

_this

ManagedObjectReference

A reference to the CryptoManager used to make the method call.

keys*

CryptoKeyId[]

[in] List of keys to remove.

Since vSphere API Release 6.5

force

xsd:boolean

[in] Remove the key even if in use. Always successful.

Since vSphere API Release 6.5

*Need not be set

Return Value

Type	Description
CryptoKeyResult[]

Faults

Type	Description
RuntimeFault	Thrown if any type of runtime fault is thrown that is not covered by the other faults; for example, a communication error.

Events

Type
None

Show WSDL type definition

         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="RemoveKeys" type="pbm:RemoveKeysRequestType"/>
         <element xmlns="http://www.w3.org/2001/XMLSchema" xmlns:pbm="urn:pbm" name="RemoveKeysResponse">
                  <complexType>
                     <sequence>
                        <element name="returnval" type="pbm:CryptoKeyResult" minOccurs="0" maxOccurs="unbounded"/>
                     </sequence>
                  </complexType>
               </element>

VMware Storage Policy API

Managed Object - CryptoManager(vim.encryption.CryptoManager)

Managed Object Description

AddKey(addKey)

AddKeys(addKeys)

ListKeys(listKeys)

RemoveKey(removeKey)

RemoveKeys(removeKeys)