You may be familiar withTrusted launchfor Azure virtual machines (VMs). It supports secure boot, virtual TPM (Trusted Platform Module), and boot integrity monitoring for virtual machines that run on Azure.
Trusted launch support is now available for Azure Arc VMs on Azure Stack HCI. Trusted launch for Azure Arc VMs on Azure Stack HCI is now available for preview with the public preview release of Azure Stack HCI, version 23H2. This release of Trusted launch for Azure Arc VMs supports secure boot, virtual Trusted Platform Module (vTPM), and vTPM state transfer when a VM migrates or fails over within a cluster.
You can choose Trusted launch as a security type when creating Azure Arc VMs on Azure Stack HCI via Azure portal or Azure CLI.