Verify and Update Host Trust

CloudControl enables you to verify and update the host trust by performing a complete attestation cycle, consisting of registering, creating whitelists, and updating Trust status. You can use one of the following methods.

  • Manually select the hosts and click the Update Trust button.
  • Enable the Refresh Trust Status scheduled event. For more information, see Scheduled Events.

    Important: Because CloudControl v 5.6 requires all Good Known Hosts to be verified by both BIOS and VMM, you must run the Refresh Trust Status scheduled event when upgrading to ensure that all qualifications are met.
    Good Known Hosts from previous versions will not display the Good Known Host icon until verified.

CloudControl automatically detects and updates the Trust Status of all TPM-enabled Intel TXT ESXi hosts on boot.

To manually verify and update host trust: 

  1. Select Compliance > Hosts.

  2. On the Hosts page, select the Intel TXT ESXi host(s) that you want to validate and click Update Trust.

    Trusted hosts display the Trusted Host icon, and the TRUSTED policy label appears in the resource tree for the host.

    If a host is not trusted, the Untrusted Host icon is displayed.