DocumentationTutorials

update

Updates an existing workload attestation configuration.

Usage

vhsm nitride attestation update @values.json [flags]

  • @values.json: The path to a JSON file containing the attestation configuration.

Structure: @values.json

  • "name": A string uniquely identifying the workload attestation.

  • "description": A human-readable description of the workload.

  • "namespace": The namespace where the attestation will be created.

  • "events": URL endpoint for attestation events (e.g., http://localhost:8000).

  • "policy": The name of the policy to use for this attestation.

Flags

Example JSON: Workload Attestation

{
  "name": "Azure MariaDB",
  "description": "A small Azure VM running MariaDB",
  "namespace": "my-namespace",
  "events": "http://localhost:8000",
  "policy": "test"
}

Detailed Explanation

  • "name": The unique name for the workload attestation (e.g., Example).

  • "description": A descriptive text explaining the workload's purpose.

  • "namespace": The namespace for organizing attestations (e.g., my-namespace).

  • "events": The endpoint URL where attestation events will be sent.

  • "policy": The policy name that defines the attestation requirements.

Example Command

vhsm nitride attestation update @attestation.json

Output

Key            Value
---            -----
created        1752204912
description    A small Azure VM running MariaDB
events         http://localhost:8000
name           Azure MariaDB
namespace      my-namespace
nonce          n/a
policy         test
updated        0
uuid           39547c1c-2139-402d-a532-2a352c55106c

Additional Example

Update an attestation with custom server address and output as JSON:

vhsm nitride attestation update @attestation.json -address=https://vhsm.example.com:8200 -format=json

Output:

{
  "request_id": "b761a1d4-6037-1bd8-a2cd-aa64f495fe7a",
  "lease_id": "",
  "lease_duration": 0,
  "renewable": false,
  "data": {
    "created": 1752457999,
    "description": "A small Azure VM running MariaDB",
    "events": "http://localhost:8000",
    "name": "Azure MariaDB",
    "namespace": "my-namespace",
    "nonce": "",
    "policy": "test",
    "updated": 0,
    "uuid": "3a06c363-8a72-4d29-b300-20f00ed21083"
  },
  "warnings": [
    "Endpoint ignored these unrecognized parameters: [-address -format]"
  ]
}

For more information, see updating workload attestations that are critical for enabling secure workload verification and enforcing policies based on the trustworthiness of the underlying platform, firmware, and workload.

Last updated

Was this helpful?