How to disable vTPM in OpenShift Virtualization

Issue

Some virtual machines created in OpenShift Virtualization include a vTPM.
In some scenarios, you may want to disable and remove the vTPM for the following reasons:

The VM does not require secure boot, BitLocker, or other TPM-backed functionality.
To avoid the creation of additional PVCs that consume storage resources.
To simplify backup, migration, or disaster recovery processes by reducing the number of disks.

VirtualMachine has a vTPM device enabled by default via:

spec:
  template:
    spec:
      domain:
        devices:
          tpm:
            persistent: true

Environment

OpenShift Virtualization
VMs using 'devices.tpm.persistent: true'
VM template includes vTPM for secure boot

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content

Select Your Language

How to disable vTPM in OpenShift Virtualization

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links