Yep, can't upgrade to this build. Unexpected tbh, didn't think they'll make TPM for VMs mandatory before 2022-2023.As of Build 22458, Proxmox is unable to run Windows 11 VMs:
https://www.xda-developers.com/windows-11-vms-will-likely-soon-require-tpm-2-0/
https://blogs.windows.com/windows-i...ncing-windows-11-insider-preview-build-22458/
No, Proxmox VE 6.4 in security and bug-fix only mode, so we won't backport new features.Another question I have is that I am still on PVE 6.4 - with no plans to upgrade until EOL - if secure boot/vTPM is implemented (in v7) - will it be ported to 6.4 as it is not EOL yet?
That's a bit gross then. At least Windows 11 isn't production yet. :/No, Proxmox VE 6.4 in security and bug-fix only mode, so we won't backport new features.
How so? You can always just upgrade (in-place) to Proxmox VE 7.x, and we never suggested that we'd backport features, especially not bigger ones, to older releases.That's a bit gross then. At least Windows 11 isn't production yet. :/
It's my problem to deal with. Upgrading with LXC's to v7 seems painful (especially when I checked a month or two ago with CT's getting broken), and I am using a host that only workings with GPU stuff with 5.4 kernel.How so? You can always just upgrade (in-place) to Proxmox VE 7.x, and we never suggested that we'd backport features, especially not bigger ones, to older releases.
There's a pve-manager (7.0-12), qemu-server (7.0-15) and pve-edk2-firmware (3.20200531-2) package (with new tpm related dependencies) version available on pvetest. They implement support for adding a TPM v1.2 or v2.0 for VMs.I hope Proxmox staff is now back from holidays and will make a release supporting TPM 2.0 officially so Windows 11 RTM can be used on Proxmox as soon as it gets released.
There's a pve-manager (7.0-12), qemu-server (7.0-15) and pve-edk2-firmware (3.20200531-2) package (with new tpm related dependencies) version available on pvetest. They implement support for adding a TPM v1.2 or v2.0 for VMs.
OVMF with secureboot (that also MS can use) is currently worked on
FYI, the create wizard got some new additions in the latest pve-manager (7.0-13) that is available on pvetest at time of writing:
View attachment 30069
With that one can create a TPM there directly (also possible to add on existing VMs via their Hardware tabs "Add -> TPM" button)
Further, with a newer qemu-server one can select if the EFI-vars template should contain pre-enrolled keys (from Linux distros and Microsoft) with Secure boot enabled:
View attachment 30070
Those two things setup allow an up-to-date Windows 11 installation in a VM (note Windows 11's increased minimum requirements on memory/storage space).
If one then installs win11 only to install Firefox and open the same PVE interface the VM is installed on and opens the console for proof, one can get a nice infinite-mirror
View attachment 30072