For increased security, you can add a virtual cryptoprocessor that is equipped with Trusted Platform Module (TPM) technology to an encrypted virtual machine.


  • Create a virtual machine with a minimum hardware version of 14 that uses the UEFI firmware type.
  • Encrypt the virtual machine. See Encrypt a Virtual Machine.


  1. Select Window > Virtual Machine Library.
  2. Select a virtual machine in the Virtual Machine Library window and click Settings.
  3. Click Add Device.
  4. Click Trusted Platform Module.
    If the option is not available, the Trusted Platform Module device is not supported on the guest.
  5. Click Add.
    A dialog box appears.
  6. Close the dialog box.


The virtual machine uses the virtual TPM device.
Note: You cannot decrypt the virtual machine when the TPM device is present.