Skip to main content
  1. posts/

How to set up a VMware vSphere Native Key Provider (NKP)

·130 words·1 min·
Stine Elise Larsen
VMware vSphere ESXi
Author
Stine Elise Larsen
Passionate IT architect, consultant, and technology advocate from Norway.

From VMware vSphere 7.0.2 you can configure a vSphere Native Key Provider (NKP) to enable encryption-related functionality from your vCenter.

The ESXi hosts do not require a TPM 2.0 chip to use NKP, but a TPM chip provides enhanced security.

How to configure NKP in vCenter
#

  1. From your vSphere client choose your vCenter – Configure – Key providers under Security:
vCenter Key Providers
  1. Press “Add” and choose “Add Native Key Provider
Add Native Key Provider
  1. Give your NKP a name
  2. If you leave the “Use key provider only with TPM protected ESXi host (Recommended)”-box checked the NKP can only be used by hosts with a TPM 2.0. If you want hosts without TPM to be able to use the NKP just uncheck it.

Your NKP will be configured and ready for use in about five minutes.

Related

Removing vCLS Machines in vSphere 7.0.3
·110 words·1 min
Stine Elise Larsen
ESXi VMware vSphere vCenter
vSphere Distributed Switch Configuration on Some Hosts Differed From That of the vCenter Server
·108 words·1 min
Stine Elise Larsen
ESXi VMware vSphere vCenter
Expired VMware vCenter certificates
·1617 words·8 mins
Stine Elise Larsen
ESXi VMware vSphere vCenter PKI TLS Certificate