In vSphere 7.0 Update 2 and later, you can use the built-in vSphere Native Key Provider to enable encryption technologies, such as virtual TPMs (vTPM).

vSphere Native Key Provider is included in all vSphere editions and does not require an external key server (also called a Key Management Server (KMS) in the industry). You can also use vSphere Native Key Provider for vSphere Virtual Machine Encryption, but you must purchase the VMware vSphere®Enterprise Plus Edition™.

For details about vSphere Native Key Provider, see the

vSphere Security

documentation.

The procedures in this chapter are based on the Java API. For details, see the

vSphere Automation Java API Reference

.