EC2 / Client / get_instance_tpm_ek_pub

get_instance_tpm_ek_pub

EC2.Client.get_instance_tpm_ek_pub(**kwargs)

Gets the public endorsement key associated with the Nitro Trusted Platform Module (NitroTPM) for the specified instance.

See also: AWS API Documentation

Request Syntax

response = client.get_instance_tpm_ek_pub(
    InstanceId='string',
    KeyType='rsa-2048'|'ecc-sec-p384',
    KeyFormat='der'|'tpmt',
    DryRun=True|False
)

Parameters:

• InstanceId (string) –

  [REQUIRED]

  The ID of the instance for which to get the public endorsement key.

• KeyType (string) –

  [REQUIRED]

  The required public endorsement key type.

• KeyFormat (string) –

  [REQUIRED]

  The required public endorsement key format. Specify der for a DER-encoded public key that is compatible with OpenSSL. Specify tpmt for a TPM 2.0 format that is compatible with tpm2-tools. The returned key is base64 encoded.

• DryRun (boolean) – Specify this parameter to verify whether the request will succeed, without actually making the request. If the request will succeed, the response is DryRunOperation. Otherwise, the response is UnauthorizedOperation.

Return type:

dict

Returns:

Response Syntax

{
    'InstanceId': 'string',
    'KeyType': 'rsa-2048'|'ecc-sec-p384',
    'KeyFormat': 'der'|'tpmt',
    'KeyValue': 'string'
}

Response Structure

• (dict) –

  • InstanceId (string) –

    The ID of the instance.

  • KeyType (string) –

    The public endorsement key type.

  • KeyFormat (string) –

    The public endorsement key format.

  • KeyValue (string) –

    The public endorsement key material.