VMware Cloud Community
bwolfe21
Contributor
Contributor
‎02-11-2022 02:07 PM
Jump to solution

Enabling TPM on ESXi 6.7

We are currently investigating enabling TPM for Windows Credential Guard and VBS. In my research, it seems that this would require Center 6.7 +. We do not use vCenter in our deployments. We have ESXi 6.7 installed on Hypervisor servers, but not vCenter. Can someone please confirm if the TPM can be enabled on our ESXi 6.7 VMs without using vCenter?

0 Kudos
3 Solutions

Accepted Solutions
stadi13
Hot Shot
Hot Shot
‎02-17-2022 12:34 PM
Jump to solution

I can confirm you need vCenter for enabling the vTPM device on a VM. Which license are you using on your ESX hosts. If you have Essential Kit you have already vCenter included for free.

https://docs.vmware.com/en/VMware-vSphere/6.7/com.vmware.vsphere.security.doc/GUID-4DBF65A4-4BA0-466...

Regards Daniel

View solution in original post

stadi13
Hot Shot
Hot Shot
‎02-21-2022 09:18 AM
Jump to solution

Yes on 6.7 KMS is necessary. For this reason I upgraded my lab to vSphere 7. There you no longer need the KMS. Check the requirements and how to here: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-4DBF65A4-4BA0-466...

Keep in mind. vSphere 6.7 goes End of Support in Oct 2022.

Regards Daniel

View solution in original post

0 Kudos
stadi13
Hot Shot
Hot Shot
‎02-21-2022 11:36 AM
Jump to solution

@bwolfe21 Please mark as solved so this thread get marked. The community will thank you.

View solution in original post

0 Kudos
5 Replies
stadi13
Hot Shot
Hot Shot
‎02-17-2022 12:34 PM
Jump to solution

I can confirm you need vCenter for enabling the vTPM device on a VM. Which license are you using on your ESX hosts. If you have Essential Kit you have already vCenter included for free.

https://docs.vmware.com/en/VMware-vSphere/6.7/com.vmware.vsphere.security.doc/GUID-4DBF65A4-4BA0-466...

Regards Daniel

bwolfe21
Contributor
Contributor
‎02-21-2022 09:15 AM
Jump to solution

It seems that a KMS is also going to be necessary?

0 Kudos
stadi13
Hot Shot
Hot Shot
‎02-21-2022 09:18 AM
Jump to solution

Yes on 6.7 KMS is necessary. For this reason I upgraded my lab to vSphere 7. There you no longer need the KMS. Check the requirements and how to here: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-4DBF65A4-4BA0-466...

Keep in mind. vSphere 6.7 goes End of Support in Oct 2022.

Regards Daniel

0 Kudos
bwolfe21
Contributor
Contributor
‎02-21-2022 09:43 AM
Jump to solution

This is great info.  Thanks so much!

0 Kudos
stadi13
Hot Shot
Hot Shot
‎02-21-2022 11:36 AM
Jump to solution

@bwolfe21 Please mark as solved so this thread get marked. The community will thank you.

0 Kudos