160 questions with Azure Disk Encryption tags

Sort by: Updated
Updated Created Answers
2 answers

Is SSE with PMK equivalent to full disk encryption?

Is SSE with PMK equivalent to full disk encryption?

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-04-04T21:43:19.55+00:00
Rosenthal, Murray 0 Reputation points
commented 2024-04-29T06:27:08.82+00:00
Sumarigo-MSFT 43,801 Reputation points Microsoft Employee
2 answers

Unable to Enable Encryption at host for Azure VM

I'm attempting to enable Encryption at host for a virtual machine (VM) in Azure. I've confirmed that the "Microsoft.Compute" resource provider is registered in my Azure subscription, and when I run the necessary command to verify, it shows as…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,140 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-09-28T10:43:20.4666667+00:00
Tahami Rizwan 15 Reputation points
edited a comment 2024-04-25T08:33:02.9133333+00:00
Aymen Glaied 0 Reputation points
1 answer

Migrating Azure VM from unmanaged to managed disk

Hello, I am attempting to migrate my Azure VM from unmanaged disk to managed disk and am wondering what steps I should take for a potential backout plan if the migration fails. Additionally, I am unsure how to restore an unmanaged VM from Azure Native…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,140 questions
Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,696 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
572 questions
asked 2024-04-20T15:36:55.03+00:00
SafiyullahSA 65 Reputation points
commented 2024-04-24T00:40:00.6033333+00:00
Marcin Policht 10,755 Reputation points MVP
2 answers

Who has access to my Azure platform-managed encryption keys?

Hello. The boss is askng a question about who is able to to access the encryption keys for our data that lives in Microsoft Azure. Looking through the docs, I see that employees are "technologically prevented" from accessing those keys. As…

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-04-17T17:06:15.16+00:00
Sean Perryman 0 Reputation points
edited an answer 2024-04-17T21:58:45.45+00:00
KarishmaTiwari-MSFT 18,527 Reputation points Microsoft Employee
1 answer

SOC Reports + Key Rotation

As a Microsoft 365 Business Premium Client, where can I download a report which details how our data is encrypted in Transit and at Rest? We need it for a compliance activity. The report needs to include the key rotation cycle.

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-03-26T15:56:40.2333333+00:00
Ansa Services 0 Reputation points
edited an answer 2024-03-29T17:05:49.5433333+00:00
KarishmaTiwari-MSFT 18,527 Reputation points Microsoft Employee
2 answers

LUN Numbers Misbehaving in Disk Management and Server Manager on Windows Server

m encountering issues with LUN numbers behaving unexpectedly in Disk Management and Server Manager Disk Properties on my Windows Server. Additionally, I'm experiencing challenges detaching disks from the Azure portal due to uncertainty about which LUN to…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,696 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
572 questions
asked 2024-03-21T04:26:59.05+00:00
Niket Kumar Singh 190 Reputation points
commented 2024-03-22T08:52:49.5666667+00:00
Nehruji R 1,976 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Azure - Encryption / Decryption between storage and authorised programs to protect Intellectual Property

I am thinking of moving our organisation computing to Azure with probably Microsoft 365 E5 licenses to make use of Purview and other DLP tools. As there are multiple routes than data could be sent outside the company network I was hoping there was a way…

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Windows 365 Enterprise
Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
934 questions
asked 2024-03-13T12:35:06.1766667+00:00
WA 20 Reputation points
accepted 2024-03-21T10:38:10.2733333+00:00
WA 20 Reputation points
1 answer One of the answers was accepted by the question author.

Is PDF file is also covered for scanning by O365 E3 DLP?

Hello - We are in the process of utilizing the default DLP capability of Office 365 E3. I just wanted to know if PDF file is also covered for scanning by O365 E3 DLP?

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
3,808 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
934 questions
asked 2024-03-05T02:15:32.26+00:00
VERDIDA Reymond 20 Reputation points
accepted 2024-03-07T07:25:49.0666667+00:00
VERDIDA Reymond 20 Reputation points
1 answer One of the answers was accepted by the question author.

If I am using Microsoft managed keys do Microsoft have to inform customer in case a legal body asks for the data? If a legal body as per law asks microsoft to disclose the data will the customer be informed of such disclosure, if the customer is in Canad

What does Microsoft recommend whether to go for Customer managed keys or Microsoft managed keys?

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,118 questions
Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,696 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-02-27T15:40:32.61+00:00
Banerjee, Somdutta 141 Reputation points
accepted 2024-02-27T18:04:17.7666667+00:00
Banerjee, Somdutta 141 Reputation points
3 answers

Azure VM with secure boot running Ubuntu Linux 22.04 cannot mount xfs partitions after Azure Disk Encryption configured

Hi, If I create an Ubuntu 22.04 VM with secure boot enabled, add a couple of disks and format them - one with ext4 and the other xfs filesystem - they mount fine after reboot. If I then apply Azure Disk Encryption to "ALL" disks (with the…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,140 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-01-26T16:13:41.3866667+00:00
Gary Mansell 111 Reputation points
answered 2024-02-20T11:19:46.1666667+00:00
Gary Mansell 111 Reputation points
2 answers

Cross resource group move is not supported

{ "message": "Resource move validation failed. Please see details. Diagnostic information: timestamp '20240113T144312Z', subscription id 'b5d38e7d-cf0c-4f44-b86e-8eb7ceeaba6c', tracking id '06625a7d-eb14-45d0-935a-3182150bd113', request…

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2024-01-13T14:51:09.2433333+00:00
Dheeman Das 41 Reputation points
commented 2024-01-23T10:17:11.1066667+00:00
Nehruji R 1,976 Reputation points Microsoft Vendor
3 answers

How to encrypt the temp disks, caches, and data flows between Compute and Storage resources in Azure windows vm

How to encrypt the temp disks, caches, and data flows between Compute and Storage resources in Azure windows vm.

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2022-02-17T12:41:47.533+00:00
Azurelearner 1 Reputation point
edited the question 2024-01-17T16:45:13.5933333+00:00
Sumarigo-MSFT 43,801 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Encrypt Azure disks failed with error code 2147942487

Azure Cli command line: az vm encryption enable --resource-group "GenDox_Labs" --name "GenDoxDM2" --disk-encryption-keyvault…

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2022-06-10T03:12:58.253+00:00
Ray Fu (Inspur Worldwide Services Ltd) 21 Reputation points Microsoft Vendor
commented 2024-01-15T15:12:22.88+00:00
RaKu 41 Reputation points
1 answer One of the answers was accepted by the question author.

Understanding Premium SSD v2 Limitations

Hi all, I am looking to upgrade some of my Premium SSD disks to Premium SSD v2. However, it seems like Premium SSD v2 disks have quite a few limitations. What is the best way to identify which of those limitations apply to my disks? Please see below for…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,140 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
572 questions
Azure Site Recovery
Azure Site Recovery
An Azure native disaster recovery service. Previously known as Microsoft Azure Hyper-V Recovery Manager.
636 questions
asked 2024-01-10T20:45:07.3433333+00:00
AE 65 Reputation points
commented 2024-01-11T15:01:09.6+00:00
AE 65 Reputation points
1 answer One of the answers was accepted by the question author.

Changing an existing disk encryption set to double encryption

I have got existing Azure disk encryption sets and I was wondering if it is possible to change this to use double encryption that is to use a platform managed key and a customer managed key, currently it is set to customer managed key only. If it is…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,696 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-11-28T00:00:44.7+00:00
MrFlinstone 481 Reputation points
accepted 2023-11-28T18:13:22.2933333+00:00
MrFlinstone 481 Reputation points
1 answer

What happened with azure services used encryption setting enabled customer-managed key in key vault if key has expired?

Hi, We settings on some azure services used encryption with customer-managed key use in azure key vaults. which effect to those services? in this case we use encryption customer-managed key in key vaults, whose key has expired. such as service i used…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,118 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
4,381 questions
asked 2023-11-21T12:16:25.01+00:00
thanakrit.r 1 Reputation point
commented 2023-11-23T11:31:49.6466667+00:00
Akshay-MSFT 16,026 Reputation points Microsoft Employee
1 answer

Need help about cost analysis on implementing Virtual machines and virtual machine scale sets should have encryption at host enabled policy

Need help about cost analysis on implementing Virtual machines and virtual machine scale sets should have encryption at host enabled policy

Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,041 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-10-30T16:41:51.0966667+00:00
Kuntekal, Mahendra (Super User) 0 Reputation points
edited a comment 2023-11-10T09:31:01.69+00:00
Sumarigo-MSFT 43,801 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Questions about Azure Encryption

I have some doubst about how Microsoft Azure Encryption works. I come from AWS, and it seems that we have some security controls in AWS regarding encryption keys, we have not in Azure. For example: In AWS, if a disk is encrypted using a specific…

Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,431 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-10-01T08:54:53.53+00:00
Arnaldo Morales Busato 20 Reputation points
accepted 2023-11-06T07:54:49.2766667+00:00
Arnaldo Morales Busato 20 Reputation points
1 answer One of the answers was accepted by the question author.

How to enable key vault permission for disk encryption set using Azure Python SDK API calls?

I am setting up disk encryption using a key vault, but I'm unable to grant permission to the key vault after creating the Disk Encryption Set (DES). The overview section of the DES shows a warning that reads: "To associate a disk, image, or snapshot…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,118 questions
Azure Cloud Services
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
638 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-10-20T13:42:34.8966667+00:00
Prem Jha 20 Reputation points
commented 2023-11-02T06:23:35.8066667+00:00
Prem Jha 20 Reputation points
1 answer

VM protected with ADE and the key in Key Vault expires - expected outcome?

Hello, We have Azure Disk Encryption enabled on our VMs. The encryption key is stored in an Azure key vault and there is a corporate policy that keys and secrets must have expiry dates. I tested to see what would happen to a VM when the key expired. The…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,140 questions
Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
160 questions
asked 2023-09-20T13:40:03.17+00:00
mij2020 366 Reputation points
commented 2023-09-28T19:25:59.14+00:00
mij2020 366 Reputation points