Configuring and Managing vSphere Native Key Provider
Using a VMware vSphere® Native Key Provider™ in your vSphere environment requires some preparation. After you configure vSphere Native Key Provider, you can use all features which previously would have required an external KMS, including creating virtual Trusted Platform Modules (vTPMs) on your virtual machines.
After your environment is set up for vSphere Native Key Provider, you can use the vSphere Client and API to create vTPMs. If you purchase the vSphere Enterprise+ edition, you can also encrypt virtual machines and virtual disks, and encrypt existing virtual machines and disks. For more information on the vSphere Native Key Provider functionality, see vSphere Security.