![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 31%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETR%3C/text%3E%3C/svg%3E)
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,141 questions
Thank you for posting your query on Microsoft Q&A, from above description I could understand that you are lloing for advisory on behavior of your environment when you are using a CMK for encryption of your managed disk and it gets expired.
Please do correct me if this is not the case by responding in the comments section.
When a key is either disabled, deleted, or expired, any VMs with either OS or data disks using that key will automatically shut down. After the automated shut down, VMs won't boot until the key is enabled again, or you assign a new key. Generally, disk I/O (read or write operations) start to fail one hour after a key is either disabled, deleted, or expired
Thanks,
Akshay Kaushik
Please do accept the answer and rate your experience if the above-mentioned suggestion works as per your business need.