Add a Virtual Trusted Platform Module Device

For increased security, you can add a virtual cryptoprocessor that is equipped with Trusted Platform Module (TPM) technology to an encrypted virtual machine.

Prerequisites

Create a virtual machine with a minimum hardware version of 14 that uses the UEFI firmware type.
Encrypt the virtual machine. See Encrypt and Restrict a Virtual Machine.

Procedure

Select the virtual machine and select VM > Settings.
Click Add.
Click Trusted Platform Module.

If the option is not available, the Trusted Platform Module device is not supported on the guest.
Click Finish.
Click OK.

Results

The virtual machine uses the virtual TPM device.

Note:

When a TPM device is present on a virtual machine, you cannot perform the following actions.

Decrypt the virtual machine.
Change the firmware type to BIOS.