VMware ESXi:如何从启用了 TPM 安全性的主机收集恢复密钥
Summary: 本文提供有关客户如何从启用可信平台模块 (TPM) 的主机收集其恢复密钥的说明。客户应将每个主机的恢复密钥保存在安全的地方。硬件更换活动(如系统主板更换)需要恢复密钥才能顺利完成。
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
1) 通过 SSH 连接到 ESXi 主机
2) 验证是否已安装 TPM 并在 BIOS 中启用了“TPM 安全保护”:
显示恢复密钥:
让客户复制恢复密钥,并建议他们将其与主机的主机名一起保存在安全的位置:
2) 验证是否已安装 TPM 并在 BIOS 中启用了“TPM 安全保护”:
[root@host1:~] esxcli hardware trustedboot get
Drtm Enabled: true
Tpm Present: true显示恢复密钥:
[root@host1:~] esxcli system settings encryption recovery list
Recovery ID Key
-------------------------------------- ---
{95D596B6-F9B9-4EAE-9957-5F34340B0332} 576950-585883-508642-213447-669596-497854-451424-683261-618428-522564-132967-573419-333169-023300-403351-572521 恢复密钥是显示的第二组数字:上面突出显示的十六组,每组六个数字 - 它不是 {} 之间的字母数字字符。
让客户复制恢复密钥,并建议他们将其与主机的主机名一起保存在安全的位置:
[root@host1:~] hostname host1.local
更换系统主板或 TPM 后,您必须恢复 ESXi 安全配置:ESXi — 如何恢复安全 ESXi 配置
Affected Products
PowerFlex rack, C Series, HS Series, Modular Infrastructure, Rack Servers, Tower Servers, XR Servers, Dell EMC vSAN Ready Nodes, OEM Server Solutions, VMware ESXi 5.x, VMware ESXi 6.5.X, VMware ESXi 6.7.X, VMware ESXi 6.x, VMware ESXi 7.x
, VMware ESXi 8.x
...
Products
VMware ESXi 6.x, VMware ESXi 7.x, VMware ESXi 8.xArticle Properties
Article Number: 000220136
Article Type: How To
Last Modified: 10 Dec 2024
Version: 7
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.