App layering | TPM Option Missing in Windows 11 Imported OS Layer

book

Article ID: CTX695317

calendar_today

Updated On:

Description

We don't see the TPM option for the created machine, as those are showing non-encrypted.

The account specified in the connector configuration is missing the Cryptographer.RegisterHost privilege.

unidesk-vsphere-connector.log.json.log

{"xsi:type":"RuntimeFault"},"faultMessage":[{"key":"com.vmware.vim.vpxd.encryption.noRegisterHostPermission","message":"Session does not have Cryptographer.RegisterHost privilege"}]},"localizedMessage":"RuntimeFault.summary"} (reqNum=34770)

Cause

That is happening because the host associated with the connector configuration does not already have encryption enabled so VMware is trying to do it as part of deploying the VM, but the account doesn't have permission.

Resolution

Instead of granting the account associated with the Application Layer (AL) elevated privileges, you can manually enable encryption on the host machine.

Issue/Introduction

TPM option is not available for the imported win 11 OS layer.

Was this article helpful?

thumb_up Yes

thumb_down No

Welcome to "KB Articles"