gcloud alpha kms single-tenant-hsm proposal create

NAME
gcloud alpha kms single-tenant-hsm proposal create - create a single tenant HSM instance proposal
SYNOPSIS
gcloud alpha kms single-tenant-hsm proposal create (SINGLE_TENANT_HSM_INSTANCE : --location=LOCATION) --operation-type=OPERATION_TYPE [--member-public-key-pem=MEMBER_PUBLIC_KEY_PEM] [--required-approver-count=REQUIRED_APPROVER_COUNT] [--single-tenant-hsm-instance-proposal-id=SINGLE_TENANT_HSM_INSTANCE_PROPOSAL_ID] [--two-factor-public-key-pems=[PEM_FILE_PATH,…]] [GCLOUD_WIDE_FLAG]
DESCRIPTION
(ALPHA) $ gcloud alpha kms single-tenant-hsm proposal create my_stchi --location=us-central1 \ --required-approver-count=1 \ --two-factor-public-key-pems=public_key_1.pem,public_key_2.pem
POSITIONAL ARGUMENTS
SingleTenantHsmInstance resource - The KMS single tenant HSM instance resource. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways.

To set the project attribute:

  • provide the argument single_tenant_hsm_instance on the command line with a fully specified name;
  • set the property core/project.

This must be specified.

SINGLE_TENANT_HSM_INSTANCE
ID of the singleTenantHsmInstance or fully qualified identifier for the singleTenantHsmInstance.

To set the single_tenant_hsm_instance attribute:

  • provide the argument single_tenant_hsm_instance on the command line.

This positional argument must be specified if any of the other arguments in this group are specified.

--location=LOCATION
The Google Cloud location for the singleTenantHsmInstance.

To set the location attribute:

  • provide the argument single_tenant_hsm_instance on the command line with a fully specified name;
  • provide the argument --location on the command line.
REQUIRED FLAGS
--operation-type=OPERATION_TYPE
The type of operation for the single tenant HSM instance proposal.
OPTIONAL FLAGS
--member-public-key-pem=MEMBER_PUBLIC_KEY_PEM
The PEM file containing the public key of the quorum member to add or remove. This field is required for add_quorum_member and remove_quorum_member operation types.
--required-approver-count=REQUIRED_APPROVER_COUNT
The number of approvers required for the single tenant HSM instance. This is the M value used for M of N quorum. Must be greater than or equal to 1 and less than or equal to the total approver count of the single tenant HSM instance minus 1. This field is required for the register_2fa_keys operation type.
--single-tenant-hsm-instance-proposal-id=SINGLE_TENANT_HSM_INSTANCE_PROPOSAL_ID
The ID to use for the single tenant HSM instance proposal, which will become the final component of the single tenant HSM instance resource name.
--two-factor-public-key-pems=[PEM_FILE_PATH,…]
The PEM files containing the two factor public keys 2FA keys for M of N quorum auth tenant HSM instance. This field is required for register_2fa_keys operation type.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

Run $ gcloud help for details.

NOTES
This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early access allowlist. These variants are also available: 
gcloud kms single-tenant-hsm proposal create
 
gcloud beta kms single-tenant-hsm proposal create