It is not quite easy to copy this record to a new Mac, but it is possible. The VM will NOT start without the corresponding record in the Mac Keychain that contains a password to decrypt the TPM file. Such an implementation ensures that users don’t have to come up with a password and enter it every time they start a VM, plus we humans tend to forget and lose passwords. Users can continue running their virtual machines as usual, up to the moment when one wants to transfer the VM to a new hardware.įor a VM with TPM chip added, copying the PVM bundle to a new computer is not enough. After adding a virtual TPM chip to a VM, Parallels Desktop creates an encrypted file within the virtual machine bundle that acts as a TPM storage. This storage must be secured, so Parallels Desktop encrypts this file using Advanced Encryption Standard (AES) with 128 bits key length and puts the password in the Mac System Keychain, which, in turn, is encrypted physical storage, and only Parallels Desktop (or Mac admin) can read the TPM password from Mac Keychain.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |