Regardless of which key provider is used, with vSphere virtual machine encryption both new and existing VMs can be encrypted. As all VM files with sensitive information are encrypted, the VM is protected. Only administrators with sufficient privileges can perform encryption and decryption tasks.