az attestation
Note
This reference is part of the attestation extension for the Azure CLI (version 2.55.0 or higher). The extension will automatically install the first time you run an az attestation command. Learn more about extensions.
This command group is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Manage Microsoft Azure Attestation (MAA).
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az attestation create |
Creates a new Attestation Provider instance. |
Extension | Experimental |
| az attestation delete |
Delete Attestation Service. |
Extension | Experimental |
| az attestation get-default-by-location |
Get the default provider by location. |
Extension | Experimental |
| az attestation list |
Returns a list of attestation providers in a subscription. |
Extension | Experimental |
| az attestation list-default |
Get the default provider. |
Extension | Experimental |
| az attestation policy |
Manage policies. |
Extension | Experimental |
| az attestation policy reset |
Resets the attestation policy for the specified tenant and reverts to the default policy. |
Extension | Experimental |
| az attestation policy set |
Sets the policy for a given kind of attestation type. |
Extension | Experimental |
| az attestation policy show |
Retrieves the current policy for a given kind of attestation type. |
Extension | Experimental |
| az attestation show |
Get the status of Attestation Provider. |
Extension | Experimental |
| az attestation signer |
Manage signers. |
Extension | Experimental |
| az attestation signer add |
Adds a new attestation policy certificate to the set of policy management certificates. |
Extension | Experimental |
| az attestation signer list |
Retrieves the set of certificates used to express policy for the current tenant. |
Extension | Experimental |
| az attestation signer remove |
Removes the specified policy management certificate. |
Extension | Experimental |
| az attestation update |
Updates the Attestation Provider. |
Extension | Experimental |
az attestation create
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Creates a new Attestation Provider instance.
az attestation create [--certs-input-path]
[--id]
[--location]
[--name]
[--resource-group]
[--tags]Examples
AttestationProviders_Create
az attestation create --name "myattestationprovider" --resource-group "MyResourceGroup" -l westusOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Space-separated file paths to PEM/DER files containing certificates. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Resource ID of the provider. Please omit --resource-group/-g or --name/-n if you have already specified --id.
The supported Azure location where the attestation provider should be created. When not specified, the location of the resource group will be used.
Name of the attestation provider.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
The tags that will be assigned to the attestation provider. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation delete
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Delete Attestation Service.
az attestation delete [--id]
[--name]
[--resource-group]
[--yes]Examples
AttestationProviders_Delete
az attestation delete --name "myattestationprovider" --resource-group "sample-resource-group"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Resource ID of the provider. Please omit --resource-group/-g or --name/-n if you have already specified --id.
Name of the attestation service instance.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Do not prompt for confirmation.
| Property | Value |
|---|---|
| Default value: | False |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation get-default-by-location
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Get the default provider by location.
az attestation get-default-by-location [--ids]
[--location]
[--subscription]Examples
AttestationProviders_GetDefaultWithLocation
az attestation get-default-by-location --location "Central US"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Location. Values from: az account list-locations. You can configure the default location using az configure --defaults location=<location>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation list
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Returns a list of attestation providers in a subscription.
az attestation list [--resource-group]Examples
AttestationProviders_ListByResourceGroup
az attestation list --resource-group "testrg1"AttestationProviders_List
az attestation listOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation list-default
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Get the default provider.
az attestation list-defaultExamples
AttestationProviders_GetDefault
az attestation list-defaultGlobal Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation show
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Get the status of Attestation Provider.
az attestation show [--id]
[--name]
[--resource-group]Examples
AttestationProviders_Get
az attestation show --name "myattestationprovider" --resource-group "MyResourceGroup"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Resource ID of the provider. Please omit --resource-group/-g or --name/-n if you have already specified --id.
Name of the attestation service instance.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az attestation update
Command group 'attestation' is experimental and under development. Reference and support levels: https://aka.ms/CLI_refstatus
Updates the Attestation Provider.
az attestation update [--ids]
[--name]
[--resource-group]
[--subscription]
[--tags]Examples
AttestationProviders_Update
az attestation update --name "myattestationprovider" --resource-group "MyResourceGroup" --tags Property1="Value1" Property2="Value2" Property3="Value3"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of the attestation provider.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The tags that will be assigned to the attestation provider. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
