You can enable vSGX on a virtual machine at the same time you create a virtual machine.

Prerequisites

The ESXi host must be installed on an SGX-capable CPU and SGX must be enabled in the host's BIOS. See vSGX Overview for supported Intel CPUs.

Create a virtual machine that uses hardware version 17 or later and one of the following supported guest operating systems:

  • Linux
  • Windows 10 (64 bit) and later
  • Windows Server 2016 (64 bit) and later

Procedure

  1. Connect to vCenter Server by using the vSphere Client.
  2. Select an object in the inventory that is a valid parent object of a virtual machine, for example, an ESXi host or a cluster.
  3. Right-click the object, select New Virtual Machine, and follow the prompts to create a virtual machine.
    Option Action
    Select a creation type Create a virtual machine.
    Select a name and folder Specify a name and target location.
    Select a compute resource Specify an object for which you have privileges to create virtual machines.
    Select storage In the VM storage policy, select the storage policy. Select a compatible datastore.
    Select compatibility Ensure that ESXi 7.0 and later is selected.
    Select a guest OS Select either Linux, Windows 10 (64-bit), or Windows Server 2016 (64-bit).
    Customize hardware Under Security devices, select the Enable check box for SGX. Under VM Options > Boot Options > Firmware, ensure that EFI is selected. Enter Enclave Page Cache (EPC) size and select Flexible Launch Control (FLC) mode accordingly.
    Ready to complete Review the information and click Finish.