VMware vSphere

Hello guys,

i have just finshed to configure all the requirements to have vTPM in place :

- vCenter 6.7

- vSphere 6.7

- KMS configured

When i try to add a new vTPM chip with the add device wizard i do not have the option available.

Any idea what i'm missing ?

Thanks in advance,

Daniele

Hey DanieleFiore201110141​,

Make sure you have the next pre-requisites:

• Guest OS W2016 or W10 (64 bits) and set like this into the Guest OS properties of the VM.
• VM boot mode set to EFI.
• Virtual Hardware version set to 14.
• If your VM is powered-on, make sure to power it off.

Here some resources for you to follow supposing you did not read them yet:

• Set up the Key Management Server Cluster
• Add a Virtual Trusted Platform Module to a Virtual Machine

I have them all in place as well, i should have mentioned that too.

Existing W10 VM

HW 15

Boot EFI

VMpowered off

I checked also in VMption i do not have the ability to encrypt the VM, just the vmotion.

COuld it be i have not the full rights ?

Well if you think you do not have all the necessary permissions check here: Prerequisites and Required Privileges for Encryption Tasks

However, if you are part of the vCenter Administrators group you should have all of them. Also one more thing, was your KMS correctly added to vCenter?

Ok i fixed it requesting more rights , that was the problem

Please expand on the solution. I have this same issue.

Is the virtual firmware of the W10 VM UEFI?

If the virtual firmware is still at BIOS, Windows 10 has a built-in tool (MBR2GPT.exe) to convert the boot disk from MBR to GPT. The tool only works if there are maximum of 3 partitions in the existing boot disk; anything more than 3 it just fails.

https://docs.microsoft.com/en-us/windows/deployment/mbr-to-gpt