Virtual Trusted Platform Module (vTPM) devices are pre-configured with default certificates, which you can review.


You must have a vTPM-enabled virtual machine in your environment.


  1. Connect to vCenter Server by using the vSphere Client.
  2. Select an object in the inventory that is a valid parent object of a virtual machine, for example, an ESXi host or a cluster.
  3. Click VMs and click Virtual Machines.
  4. Select the vTPM-enabled virtual machine whose certificate information you want to view.
    If necessary, click the three-bar Column Selector in the lower left corner and select TPM to display virtual machines with a TPM "Present."
  5. Click the Configure tab.
  6. Under TPM, select Certificates.
  7. Select the certificate and view its information.
  8. (Optional) To export the certificate information, click Export.
    The certificate is saved to disk.

What to do next

You can replace the default certificate with a certificate issued by a third-party certificate authority (CA). See Export and Replace Virtual Trusted Platform Module Device Certificates.