Powershell Changes for Security Type

src/Migrate/Migrate.Autorest/custom/New-AzMigrateServerReplication.ps1

@@ -185,6 +185,20 @@ function New-AzMigrateServerReplication {
         # Specifies the Operating System disk for the source server to be migrated.
         ${OSDiskID},
 
+        [ValidateSet("Standard" , "TrustedLaunch")]
+        [ArgumentCompleter( { "Standard" , "TrustedLaunch" })]
+        [Microsoft.Azure.PowerShell.Cmdlets.Migrate.Category('Path')]
+        [System.String]
+        # Specifies the security type for the Azure VM.
+        ${TargetSecurityType},
+
+        [ValidateSet("true" , "false")]
+        [ArgumentCompleter( { "true" , "false" })]
+        [Microsoft.Azure.PowerShell.Cmdlets.Migrate.Category('Path')]
+        [System.String]
+        # Specifies if secure boot needs to be enabled on target VM.
+        ${TargetVMSecureBootEnabled},
+
         [Parameter(ParameterSetName = 'ByIdDefaultUser')]
         [Parameter(ParameterSetName = 'ByInputObjectDefaultUser')]
         [Microsoft.Azure.PowerShell.Cmdlets.Migrate.Category('Path')]
@@ -261,6 +275,8 @@ function New-AzMigrateServerReplication {
         $HasResync = $PSBoundParameters.ContainsKey('PerformAutoResync')
         $HasDiskEncryptionSetID = $PSBoundParameters.ContainsKey('DiskEncryptionSetID')
         $HasTargetVMSize = $PSBoundParameters.ContainsKey('TargetVMSize')
+        $HasTargetSecurityType = $PSBoundParameters.ContainsKey('TargetSecurityType')
+        $HasTargetVMSecureBootEnabled = $PSBoundParameters.ContainsKey('TargetVMSecureBootEnabled')
 
         $null = $PSBoundParameters.Remove('ReplicationContainerMapping')
         $null = $PSBoundParameters.Remove('VMWarerunasaccountID')
@@ -286,6 +302,8 @@ function New-AzMigrateServerReplication {
         $null = $PSBoundParameters.Remove('SqlServerLicenseType')
         $null = $PSBoundParameters.Remove('LicenseType')
         $null = $PSBoundParameters.Remove('DiskEncryptionSetID')
+        $null = $PSBoundParameters.Remove('TargetSecurityType')
+        $null = $PSBoundParameters.Remove('TargetVMSecureBootEnabled')
 
         $null = $PSBoundParameters.Remove('MachineId')
         $null = $PSBoundParameters.Remove('InputObject')
@@ -426,7 +444,7 @@ function New-AzMigrateServerReplication {
         if ($FabricName -eq "") {
             throw "Fabric not found for given resource group."
         }
-                
+
         $null = $PSBoundParameters.Add('FabricName', $FabricName)
         $peContainers = Az.Migrate\Get-AzMigrateReplicationProtectionContainer @PSBoundParameters
         $ProtectionContainerName = ""
@@ -539,6 +557,17 @@ public static int hashForArtifact(String artifact)
         $ProviderSpecificDetails.InstanceType = 'VMwareCbt'
         $ProviderSpecificDetails.LicenseType = $LicenseType
         $ProviderSpecificDetails.PerformAutoResync = $PerformAutoResync
+        if ($HasTargetVMSecureBootEnabled) {
+            $ProviderSpecificDetails.TargetVMSecurityProfileIsTargetVmsecureBootEnabled = $TargetVMSecureBootEnabled
+        }
+
+        if ($HasTargetSecurityType -and $TargetSecurityType -ne "Standard") {
+            $ProviderSpecificDetails.TargetVMSecurityProfileTargetVmsecurityType = $TargetSecurityType
+            $ProviderSpecificDetails.TargetVMSecurityProfileIsTargetVmtpmEnabled = $true
+        } elseif($HasTargetVMSecureBootEnabled) {
+            throw "SecureBoot when security type is trusted launch virtual machine."
+        }
+
         if ($HasTargetAVSet) {
             $ProviderSpecificDetails.TargetAvailabilitySetId = $TargetAvailabilitySet
         }
@@ -639,6 +668,7 @@ public static int hashForArtifact(String artifact)
         }
 
         Import-Module Az.Resources
+        Import-Module Az.Compute
         $vmId = $ProviderSpecificDetails.TargetResourceGroupId + "/providers/Microsoft.Compute/virtualMachines/" + $TargetVMName
         $VMNamePresentinRg = Get-AzResource -ResourceId $vmId -ErrorVariable notPresent -ErrorAction SilentlyContinue
         if ($VMNamePresentinRg) {
@@ -664,9 +694,6 @@ public static int hashForArtifact(String artifact)
                     $DiskObject.IsOSDisk = "false"
                     $DiskObject.LogStorageAccountSasSecretName = $LogStorageAccountSas
                     $DiskObject.LogStorageAccountId = $LogStorageAccountID
-                    if ($HasDiskEncryptionSetID) {
-                        $DiskObject.DiskEncryptionSetId = $DiskEncryptionSetID
-                    }
                     $DiskToInclude += $DiskObject
                 }
             }
@@ -719,7 +746,5 @@ public static int hashForArtifact(String artifact)
         $null = $PSBoundParameters.Add('ResourceGroupName', $ResourceGroupName)
 
         return Az.Migrate.internal\Get-AzMigrateReplicationJob @PSBoundParameters
-
     }
-
-}   
+}