Skip to content

Virtual TPM

Cloudstack supports the ability to add a virtual TPM to a Instance. TPM is is emulated in the VM and requires setting some advanced settings that are only available via API today.

Build a instance with TPM

You will follow the normal instance deployment, however, this will note a few changes to that process.

  1. Deploy a new instance using the wizard as we would normally, however we need to change a couple of settings.
  2. Make sure under Advanced Settings that the Boot Type = "UEFI" and Boot Mode = "Secure"

  3. At the bottom of the deployment wizard there is a Start Instance ratio box.

    📝 You cannot add vTPM to an existing instance. These steps can only be performed on an instance that has never been powered on.

  4. Click Launch Instance. Click on the name of the Instance

  5. We need to add some XML configuration via the API. This will set the extraconfig value on the instance

    1. Find the instance id of your VM. Click on the name of the Instance.
    2. Copy the ID String somewhere.

  6. At this time, it is not possible for customers to edit the extraconfig value on VMs. US Signal will need to add this configuration for you.

  7. Once the extraconfig value has been added, you can power on the VM and install your OS as normal.