`vim_host_ssl_thumbprint`¶

Fetch and validate ESXi SSL certificate thumbprints.

fetch opens a raw TLS connection (no SOAP); current reads the thumbprint vCenter knows about; validate compares them.

saltext.vcf.clients.vim_host_ssl_thumbprint.fetch(hostname, port=443, timeout=10)[source]¶

Return the SHA-1 thumbprint of hostname:port’s SSL certificate, colon-separated.

No SOAP required. Used for pre-vCenter-add validation and drift checks.

saltext.vcf.clients.vim_host_ssl_thumbprint.current(opts, host, profile=None)[source]¶: Return the thumbprint vCenter has cached for host.

saltext.vcf.clients.vim_host_ssl_thumbprint.validate(opts, host, profile=None)[source]¶

Fetch the live thumbprint and compare against the one vCenter knows.

Returns {current, live, match}. If the host’s management address is unreachable, live is None and match is False.

vim_host_ssl_thumbprint¶