How to use physical TPM?

H

hckaraca99

New Member
Aug 13, 2024
3
0
1
Hello,

I am lately trying to reach the physical TPM in VM. I wonder if it is possible by using the passthrough drivers?
My goal is to prevent the users from copying the VM and run it on another. For this purpose, I am trying to use TPM.

Thanks.
 
Last edited:
fiona said:
I.e. don't give the users permission to copy/migrate/backup that VM.
Click to expand...
It would be very helpfull, If Proxmox Staff could tell the community how to use passthrough tpm. I saw lot of questions about this topic but there is no explanation. Is it even possible?
 
I am also hoping to get a response on this request. vTPM does not pass hardware validation test when implementing Azure Stack HCI. Is there a way to make the vTPM actually perform the responsibilities of a TPM module? Or is/will there be a TPM module passthrough option. :)
 
briandevadason said:
I am also hoping to get a response on this request. vTPM does not pass hardware validation test when implementing Azure Stack HCI. Is there a way to make the vTPM actually perform the responsibilities of a TPM module? Or is/will there be a TPM module passthrough option. :)
Click to expand...
I almost forgot that proxmox is still debian+qemu so digging through the qemu docs, adding this argument line on /etc/pve/qemu-server/<vmid>.conf, mentioned on qemu docs (https://www.qemu.org/docs/master/specs/tpm.html), seems to work:
Code: 
args: -tpmdev passthrough,id=tpm0,cancel-path=/dev/null,path=/dev/tpm0 -device tpm-tis,tpmdev=tpm0
 
Last edited:
  • Like
Reactions: leesteken
You must log in or register to reply here.
Top Bottom