Class ShieldedInstanceConfig (1.12.0)

ShieldedInstanceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)

A set of Shielded Instance options. See Images using supported Shielded VM features <https://cloud.google.com/compute/docs/instances/modifying-shielded-vm>__. Not all combinations are valid.

Attributes

Name Description
enable_secure_boot bool
Optional. Defines whether the VM instance has Secure Boot enabled. Secure Boot helps ensure that the system only runs authentic software by verifying the digital signature of all boot components, and halting the boot process if signature verification fails. Disabled by default.
enable_vtpm bool
Optional. Defines whether the VM instance has the vTPM enabled. Enabled by default.
enable_integrity_monitoring bool
Optional. Defines whether the VM instance has integrity monitoring enabled. Enables monitoring and attestation of the boot integrity of the VM instance. The attestation is performed against the integrity policy baseline. This baseline is initially derived from the implicitly trusted boot image when the VM instance is created. Enabled by default.