Blog

How to enable TPM and Secure Boot on VMware to install Windows 11

  • To enable TPM and Secure Boot for a Windows 11 VM, the VMware Workstation wizard will include providing an “Encryption Information” page to set up the TPM feature. Also, to enable Secure Boot, you must complete this configuration from the virtual machine “Options” settings.
  • It’s also possible to update an existing virtual machine to support TPM, Secure Boot, and UEFI, but you will have to make sure to update the VM storage type from MBR to GPT.

On VMware Workstation, if you want to create a virtual machine to run Windows 11, you must enable the Trusted Platform Module (TPM). Otherwise, you won’t be able to install the operating system. Secure Boot is highly recommended, but installing the operating system is not required.

A TPM is a chip that offers cryptographic functions, such as generating and storing encryption keys to enable features like Windows Hello, BitLocker, and others.

Secure Boot is a firmware technology that protects the boot process so that malware (such as rootkits) cannot attack the trusted operating system during startup.

Since we are dealing with virtualization, you are not required to have the hardware components physically on the device, meaning that you can run a Windows 11 virtual machine even on a Windows 10 computer without TPM, Secure Boot, or UEFI (Unified Extensible Firmware Interface).

In this guide, I will explain the steps to enable TPM and Secure Boot on VMware to install Windows 11 on a virtual machine. These instructions apply to Windows 11 and 10 and other supported platforms.

Create Windows 11 VM on VMware with TPM and Secure Boot support

To create a virtual machine with support for TPM and Secure Boot, use these steps:

  1. Open VMware Workstation.

  2. Click the File menu and select the “New virtual machine” option.

  3. Click the Next button.

  4. Select the latest virtual machine hardware compatibility option.

  5. Click the Next button.

  6. Select the “I will install the operating system later” option.

  7. Click the Next button.

  8. Select the Microsoft Windows option under the “Guest operating system” section.

  9. Choose the Windows 11 x64 option under the “Version” section.

    VMware select VM OS option

  10. Click the Next button.

  11. Confirm a name for the Windows 11 VM.

  12. Confirm the location where the virtual machine will be stored.

    VMware VM storage location

  13. Click the Next button.

  14. Select the “Only the files needed to support TPM are encrypted” option.

  15. Confirm the encryption password.

    VMware TPM setup for Windows 11 VM

  16. Check the “Remember the password on this machine in Credential Manager” option.

  17. Click the Next button.

  18. (Optional) Choose the “Split virtual disk into multiple files” option.

  19. Specify the disk size in gigabytes (64GB or higher).

    VMware Windows 11 VM storage setup

  20. Click the Next button.

  21. Click the Finish button.

  22. (Optional) Right-click the virtual machine and choose the Settings option.

  23. Select the Memory option and choose the desired amount of memory for the device (at least 8GB is recommended).

  24. Choose the Processors option and select the number of cores for the device (at least four cores are recommended).

    VMware VM hardware settings

  25. Click the Options tab.

  26. Click on Advanced.

  27. Check the “Enable secure boot” option under the “Firmware type” section.

    Enable secure boot

  28. Click the OK button.

After you complete the steps, you should be able to install Windows 11 on a virtual machine using VMware Workstation.

Enable TPM and Secure Boot on VM to install Windows 11

To enable TPM and Secure Boot on an existing VMware virtual machine, use these steps:

  1. Open VMware Workstation.

  2. Select the virtual machine.

  3. Click the VM menu and select the Settings option.

  4. Click the Options tab.

  5. Select the Access Control option.

  6. Select the Encrypt button under the “Encryption” section.

    VMware Access control Encrypt option

  7. Select the “Only the files needed to support TPM are encrypted” option.

  8. Create an encryption password.

    VMware vm encryption for Windows 11

  9. Click the Encrypt button.

  10. Click on Advanced.

  11. Select the “UEFI” option and check the “Enable secure boot” option under the “Firmware type” section (if applicable).

    VMware enable UEFI and Secure Boot

    Warning: Changing the firmware type may cause problems because you would have to update the drive partition from MBR to GPT before the system can boot in the new firmware type. If you don’t already have the VM with UEFI, I would highly recommend creating a new virtual machine.
  12. Click the Hardware tab.

  13. Click the Add button.

  14. Select the “Trusted Platform Module” option to run Windows 11.

    VMware add TPM option for Windows 11

  15. Click the Finish button.

  16. Click the OK button.

Once you complete the steps, the computer should include the required security components to pass the requirements check to upgrade to Windows 11.

Why You Can Trust Pureinfotech

The author combines expert insights with user-centric guidance, rigorously researching and testing to ensure you receive trustworthy, easy-to-follow tech guides. Review the publishing process.


Source link

Related Articles

Back to top button
close