For increased security, you can add a virtual cryptoprocessor that is equipped with Trusted Platform Module (TPM) technology to an encrypted virtual machine.
Create a virtual machine with a minimum hardware version of 14 that uses the UEFI firmware type.
Encrypt the virtual machine. See Encrypt and Restrict a Virtual Machine.
- Select the virtual machine and select .
- Click Add.
- Click Trusted Platform Module.
If the option is not available, the Trusted Platform Module device is not supported on the guest.
- Click Finish.
- Click OK.
The virtual machine uses the virtual TPM device.
When a TPM device is present on a virtual machine, you cannot perform the following actions.
Decrypt the virtual machine.
Change the firmware type to BIOS.