Method: instances.getShieldedVmIdentity
Returns the Shielded VM Identity of an instance
HTTP request
GET https://compute.googleapis.com/compute/beta/projects/{project}/zones/{zone}/instances/{instance}/getShieldedVmIdentity
The URL usesgRPC Transcoding syntax. To know more about valid error responses that can be thrown by this HTTP request, please refer to theservice error catalog
Path parameters
| Parameters | |
|---|---|
project |
Project ID for this request. |
zone |
The name of the zone for this request. |
instance |
Name of the instance scoping this request. |
Request body
The request body must be empty.
Response body
A Shielded VM Identity.
If successful, the response body contains data with the following structure:
| JSON representation |
|---|
{"kind":string,"signingKey":{"ekCert":string,"ekPub":string},"encryptionKey":{"ekCert":string,"ekPub":string}} |
| Fields | |
|---|---|
kind |
[Output Only] Type of the resource. Always |
signingKey |
An Attestation Key (AK) issued to the Shielded VM's vTPM. |
signingKey.ekCert |
A PEM-encoded X.509 certificate. This field can be empty. |
signingKey.ekPub |
A PEM-encoded public key. |
encryptionKey |
An Endorsement Key (EK) issued to the Shielded VM's vTPM. |
encryptionKey.ekCert |
A PEM-encoded X.509 certificate. This field can be empty. |
encryptionKey.ekPub |
A PEM-encoded public key. |
Authorization scopes
Requires one of the following OAuth scopes:
https://www.googleapis.com/auth/compute.readonlyhttps://www.googleapis.com/auth/computehttps://www.googleapis.com/auth/cloud-platform
For more information, see theAuthentication Overview.
IAM Permissions
In addition to any permissions specified on the fields above, authorization requires one or more of the followingIAM permissions:
compute.instances.getShieldedVmIdentity
To find predefined roles that contain those permissions, seeCompute Engine IAM Roles.
Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2025-09-18 UTC.