For increased security, you can add a virtual cryptoprocessor that is equipped with Trusted Platform Module (TPM) technology to an encrypted virtual machine.
Prerequisites
Create a virtual machine with a minimum hardware version of 14 that uses the UEFI firmware type.
Encrypt the virtual machine. See Encrypt and Restrict a Virtual Machine.
Procedure
Results
The virtual machine uses the virtual TPM device.
Note:
You cannot decrypt the virtual machine when the TPM device is present.