Change default boot option to Secure Boot for a Virtual Machine
search cancel

Change default boot option to Secure Boot for a Virtual Machine

book

Article ID: 332583

calendar_today

Updated On:

Products

VMware vSphere ESXi

Issue/Introduction

  • vSphere (Version 6.7 and later) introduces support for the entire range of Microsoft virtualization-based security technologies introduced in Windows 10 and Windows Server 2016.
  • This is a result of close collaboration between VMware and Microsoft to ensure that Windows Virtual machines on vSphere platform support in-guest security features.

NOTE: To build Virtual Machines with Windows 10 or later or Windows Server 2016 or later, it's recommended to deploy them with EFI firmware enabled, to enhance the security.

Resolution

  1. Login to the vCenter server.
  2. Right click on the ESXi Host or the Cluster and click on the Create New Virtual Machine and click Next.




  3. Provide the Virtual machine name, select the Folder and click Next.



  4. Select the Host on which the Virtual Machine has to be deployed and click Next.




  5. Select ESXi 6.7 and later under Compatible with option and click Next.




  6. In the Next Window select the Operating System required.
  7. Under Customize hardware Window, select VM Options, under Boot options select the Firmware to EFI (recommended) and Secure Boot as Enabled and click Next.




  8. Click Finish.


Note: For an existing Virtual machine, follow the below steps.

  1. Power Off the Virtual machine (take Snapshot as a precautionary step).
  2. Right click the existing Virtual machine and click Edit Settings.
  3. Select VM Options.
  4. Under Boot options enable the Firmware to EFI (recommended) and Secure Boot and click OK








  5. Power the VM ON.

 

Additional Information

For more information, refer the release notes: VMware vSphere 6.7 Release Notes

Powered by Wolken Software