IBM Cloud Docs
Creating a virtual server with SGX or TDX

Creating a virtual server with SGX or TDX

Select availability

You can create one or more virtual server instances with SGX or TDX in your IBM Cloud® VPC.

Confidential computing profiles are available in the Dallas (us-south), Washington DC (us-east), and Frankfurt (eu-de) regions. Confidential computing with Intel SGX for VPC is Dallas (us-south), Washington DC (us-east), and Frankfurt (eu-de). Confidential computing with Intel TDX for VPC is available only in the Washington DC (us-east) region. If you want to create a virtual server instance with a confidential computing profile and TDX, you can create that virtual server instance only in the Washington DC (us-east) region. You can’t create a virtual server instance with TDX in any other region, including Dallas (us-south) and Frankfurt (eu-de). For more information, see Confidential computing known issues. Confidential computing is only available with select profiles. For more information, see Confidential computing profiles.

Creating a virtual server with confidential computing

Use the following steps to create a virtual server with confidential computing.

Make sure that you created a VPC.

  1. In the IBM Cloud console, click Navigation Menu icon menu icon > VPC Infrastructure VPC icon > Compute > Virtual server instances.
  2. Click Create and select or enter the following information.
  3. Select a location.
  4. Enter a unique name for your virtual server instance.
  5. Select an available image. For more information about SGX- or TDX-supported images, see Limitations.
  6. Select an SGX- or TDX-supported profile by clicking Confidential computing. Keep in mind that only the Balanced bx3dc profiles and Compute cx3dc profiles support SGX or TDX.
  7. Click Save.
  8. SGX is the default value. Keep the SGX confidential computing value or select TDX confidential computing.
  9. Secure boot is enabled by default. To disable it, toggle secure boot to Disabled.
  10. Select an existing public SSH key or click Create an SSH key to create a new one. For more information about creating an SSH key, see Creating your SSH key by using the UI.
  11. Go to Networking, and choose a VPC for this virtual server instance.
  12. Click Create a virtual server instance when you are ready to provision. After your new virtual server with SGX or TDX is provisioned, it's ready to use.