View Single Post
Old 06-26-2021, 23:56
deepzero's Avatar
deepzero deepzero is offline
Join Date: Mar 2010
Location: Germany
Posts: 293
Rept. Given: 106
Rept. Rcvd 63 Times in 41 Posts
Thanks Given: 146
Thanks Rcvd at 186 Times in 87 Posts
deepzero Reputation: 63
This way I can not quickly add a TPM to a VM and later remove it without going through a long process or en- and then de-cryptionof the virtual drives.
You should be able to remove it (and re-add it) without decrypting and reencrypting the VM.
The VM-encryption happens on the hypervisor level and is 100% invisible to the guest OS. So you can have Bitlocker full-disk active within an encrypted VM. The only danger is that you encrypt your guest OS with Bitlocker-on-TPM, then delete the virtual TPM -> now you have a very big problem...
Reply With Quote
The Following 2 Users Say Thank You to deepzero For This Useful Post:
DavidXanatos (06-27-2021), tonyweb (06-27-2021)