Skip navigation
Menu
Switch the guardian mode for a 2016 Hyper-V box.
Compute Engines

Switch the guardian mode for a 2016 Hyper-V box.

Q. How can I switch the mode of a Hyper-V server between local guardians and a Host Guardian Server?

A. To configured a Hyper-V server to use a Host Guardian Server (HGS) for attestation and key protection the URL of those services are specified for the HGS client configuration. For example:

Set-HgsClientConfiguration -AttestationServerUrl 'http://hgs.savtechhgs.net/Attestation' `
-KeyProtectionServerUrl 'http://hgs.savtechhgs.net/KeyProtection'
Get-HgsClientConfiguration

To set a Hyper-V server back to use local guardians use:

Set-HgsClientConfiguration -EnableLocalMode

Once you make this change VMs that are shielded and use the HGS will not start unless the local guardian for the key protector exists on the machines local certificate store. To switch a server back to using HGS simply run the first command again specifying the attestation and key protection URLs.

Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
empty cockpit of autonomous car
What Is a Real-Time Operating System, and Who Needs One?
Mar 05, 2024
ERP button on keyboard
5 ERP Trends to Watch in 2024
Jan 17, 2024
automation key on keyboard
Storage Management as a Case Study for Network Automation Adoption
Dec 21, 2023
Abstract technology concept lighting effect on dark blue background
Top 10 Stories About Compute Engines, Linux in 2023
Dec 18, 2023