Class ShieldedInstanceConfig (1.12.0)

ShieldedInstanceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)

A set of Shielded Instance options. Check Images using supported Shielded VM features <https://cloud.google.com/compute/docs/instances/modifying-shielded-vm>__. Not all combinations are valid.

Attributes

Name Description
enable_secure_boot bool
Defines whether the instance has Secure Boot enabled. Secure Boot helps ensure that the system only runs authentic software by verifying the digital signature of all boot components, and halting the boot process if signature verification fails. Disabled by default.
enable_vtpm bool
Defines whether the instance has the vTPM enabled. Enabled by default.
enable_integrity_monitoring bool
Defines whether the instance has integrity monitoring enabled. Enables monitoring and attestation of the boot integrity of the instance. The attestation is performed against the integrity policy baseline. This baseline is initially derived from the implicitly trusted boot image when the instance is created. Enabled by default.