Jump to content
RESET Forums (homeservershow.com)

TPM with ESXi on a Gen8 Microserver?


Recommended Posts

I have ordered a couple of TPM modules from China for my two Gen8 servers (Hyper-V and ESXi 7). My objective is to encrypt a VM on the ESXi box, at the moment I have Eset Encryption running on the VM but when it boots I have to connect to the console to log into the encryption so would prefer to use the TPM for authentication. I know there are other options for VM encryption but it seems a lot of messing around to have vCenter and a KMS on a host that runs a few VMs and is limited to 16GB RAM.


The part that I think may cause an issue is the fact the Gen8 Microserver doesn't have UEFI BIOS:


UEFI secure boot, which ensures that only signed software is loaded at boot time, is a requirement for successful attestation.



I will give it a shot when the modules arrived but wondered if anyone had given it a try already? The modules were cheap so no loss if it won't work and I will just stick with my licensed Eset Encryption.



Link to comment
Share on other sites

  • 2 weeks later...

I had a TPM module but sold it as i received a very good offer at the time. I have not tried it but would be very interested in your findings. 

Link to comment
Share on other sites

My modules arrived today, I installed them and enabled TPM in the BIOS of both hosts. As expected, Hyper-V shows the TPM module in device manager and I can enable Bitlocker but in ESXi 7.0.1 if I create a new VM, enable Virtualization Based Security and click Add Other Device then a TPM is not listed.


When I have more time will look into this further.

  • Like 1
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Create New...