diff --git a/docker-compose.yml b/docker-compose.yml
index bc7f519..93111e1 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -251,7 +251,23 @@ services:
     networks:
       - opi
 
+  swtpm:
+    build:
+      context: tpm
+    volumes:
+      - tpm-data:/swtpm
+    networks:
+      - opi
+    command: ['socket', '--tpm2',
+              '--server', 'type=unixio,path=/swtpm/swtpm.sock',
+              '--ctrl', 'type=tcp,port=2322',
+              '--tpmstate', 'dir=/swtpm',
+              '--log', 'file=swtpm.log',
+              '--log', 'level=20',
+              '--flags', 'not-need-init,startup-clear']
+
 volumes:
+  tpm-data:
   server-certs:
   client-certs:
   dhcp-leases-folder: