Re-Authenticating a Standard VM

The way you re-authenticate a VM depends on the operating system and whether the boot drive is encrypted on the VM. The following procedure describes how to re-authenticate a standard VM. If you want to re-authenticate a VM with an encrypted boot drive, see Re-Authenticating a VM with an Encrypted Root Device or Boot Disk.

When you re-authenticate a VM you can either create a one-time passphrase on the VM that you must then enter in the KeyControl Vault for VM Encryption webGUI, or you can enter the credentials of a KeyControl Vault for VM Encryption user account with Cloud Admin privileges on the command line.

1. For Linux, log into the VM as root. For Windows, log in as a System Administrator and open a Command Prompt or start Windows PowerShell.
2. If you want to enter a one-time passphrase that you will confirm in the :
   1. Enter the command hcl auth [-o one_time_passphrase], where -o is the one-time passphrase that you will use in the KeyControl Vault for VM Encryption webGUI. The passphrase must contain exactly 16 alphanumeric characters.
   2. Log into the KeyControl Vault for VM Encryption using an account with Cloud Admin privileges.
   3. In the top menu bar, click Workloads.
   4. Click the VMs tab.

   5. Select the VM in the table and then select Actions > Authenticate.

   6. Enter the one-time passphrase at the prompt.
   7. Return to the VM and enter the command hcl attach -a to reattach all registered disks on the VM.

3. If you want to enter your KeyControl Vault for VM Encryption user account credentials on the command line, enter the command hcl auth -a [-u user [-s password]], where:

   • -u is a KeyControl Vault for VM Encryption user account name with Cloud Admin privileges.
   • -s is the password for the Cloud Admin account.