→ Applies to: VMware ESXi 7.0.2 and above

Step 1. Login to VMware Vsphere GUI (replace <your_ip_address_or_hostname> with the correct ip/hostname)

https://<your_ip_address_or_hostname>

Step 2. Click on Configure

Click to Zoom

Step 3. Click on Add and Add Native Key Provider

Eliminates the need for a third-party solution to provide VM disk encryption.

Step 4. Choose a name and click on Add Key Provider

Step 5. Click on Back up

Save the file with .p12 extension

Click to Zoom

Step 6. Create a new VM from New Virtual Machine wizard

Step 7. Select a name and folder

Step 8. Select storage, select a datastore and check the checkbox next to Encrypt this virtual machine

Step 9. Select compatibility (select at least ESXi 6.7 and later to allow using the vTPM feature)

Step 10. Under Customize hardware, click on Add new device → Trusted Platform Module

Step 11. Click on VM Options → Boot Options and select Firmware EFI

Step 12. Click OK

Step 13. Power on the VM