Trying to add a TPM to a VM results in a failure with a status of Invalid Virtual Machine Configuration.

VMware vSphere 7.x

VMware vSphere 8.x

This is caused by the VM having snapshots present on the VM.

Delete/consolidate VM snapshots and once done add the TPM. 

If you don't see the option to add a virtual TPM device to your virtual machine, check the boot type. Edit Settings > VM Options > Boot Options:

A firmware setting of BIOS is not supported to add a TPM device so the TPM option will not be available in the add hardware menu. To add a TPM you need to change your boot device to EFI. You will need to engage your OS vendor to determine if this type of configuration change is possible for the affected virtual machine.

Do not encrypt the VCSA - It is unsupported to add TPM hardware to a vCenter Server virtual appliance.

https://techdocs.broadcom.com/us/en/vmware-cis/vsphere/vsphere/8-0/vsphere-security-8-0/virtual-machine-encryption/virtual-machine-encryption-best-practices.html