CLI quickstart
vHSM (Virtual Hardware Security Module) provides cryptographic operations, key management, and secure attestation.
Learn how to create an attestation and verify token issuance from root, while ensuring workloads authenticate through their assigned namespaces.
Prerequisites
Create a namespace named
my-namepace, as the default policy associated with it defines access control rules for workloads within this namespace.
Run the following command to set up authentication, identities, policies, and attestation.
3. List the attestations that was created
Check if the attestation was successful for the namespace
my-namespace.
Note: If the workload in not linked to any attestation provider then you can specify the provider as local-none-debug .
The output is similar to:
In the output, you can see that token_meta_namespace is set to my-namespace. This confirms that while authenticated to root, the issued token was assigned to my-namespace, indicating that the token was issued from root.
Last updated
Was this helpful?