VMware vSphere 8.x Professional — Question 98

An administrator is required to configure several Microsoft Windows virtual machines (VMs) to support Secure Boot for a critical secure application.

The following information is provided:
• The corporate security policy states that all forms of data encryption must utilize a key provider.
• The firmware of each VM is currently set to use Unified Extensible Firmware Interface (UEFI).
• Due to the nature of the application running within the VMs, the guest operating system for each VM is currently a minimum of Windows Server 2008 and Windows 7.

Which security feature should the administrator implement to meet these requirements?

Answer options

• A. vSphere Virtual Machine Encryption
• B. vSphere Visualization-Based Security
• C. Virtual Intel Software Guard Extensions (vSGX)
• D. Virtual Trusted Platform Module (vTPM)

Correct answer: D

Explanation

The correct answer is D, Virtual Trusted Platform Module (vTPM), as it supports Secure Boot and complies with the requirement for a key provider for data encryption. Options A and B do not specifically relate to Secure Boot or the key provider requirement, while option C, vSGX, is more focused on secure enclaves rather than the overall VM encryption and Secure Boot process.