Why do I not see Encryption at host as an option?
Hi all. I have enabled encryption at host using the following command: egister-AzProviderFeature -FeatureName "EncryptionAtHost" -ProviderNamespace "Microsoft.Compute" After a few minutes i run: Get-AzProviderFeature…
Why use a Key Encryption Key (KEK)?
What attack scenario(s) does it prevent or mitigate? (Assume that no-one in the org needs access to the key vault)
Unable to encrypt OS disk using ADE on windows 2012 r2 VM
I tried encrypting the os disk of my windows 2012 r2 vm but gives below error: Set-AzVMDiskEncryptionExtension : Long running operation failed with status 'Failed'. Additional Info:'VM has reported a failure when processing extension…
What are the cons of Azure Disk Encryption?
Before implementing ADE, i want to know its cons/limitations. Please help with the details
bek volume corruption
Hi I have an Azure VM with ADE enabled I have it backed up to Recovery Services Vault. I've just logged into the VM and its asking me to 'Restart to repair drive errors' and from checking the Event log there's lots of errors caused by corruption on the…
Disk Encryption
How do I get a list of servers by encryption type (SSE/ADE or both)?
Bitlocker - Encryption report Intune
Hello, I have a device that has been encrypted by a Bitlocker policy. This device shows up in the Encryption report, however, while the Encryption readiness column shows Ready, and the Device encryption has been completed for 24hrs the status still…
Managed and unmanaged disk encryption
Hi, I have some questions. I created Key vault and then I did encrypt OS+Data Disk. Now my question is if I will not encrypt it myself then by default it will be encrypted too. see image 4. What is the difference between default encryption…
Azure Encrypted VM backup
Hi, I have two VMs in Azure. VM01 disk is encrypted But VM02 disk is not encrypted. I have a backup for VM02. Now I want to create a backup for VM01. Since VM01 has encrypted disk. So my question is, Backup steps for the VM01 are same as VM01 or…
How to recover data from a BitLocker Encrypted External HD?
I was encrypting my external HDD using Bitlocker. At about 50%, the cable got unplugged. When I connected the HDD again, it says the drive is locked. When I enter the password, it does not accept. When I use the recovery key, it does not accept it…
how to restrict usb drives and other peripherals in windows 10, does bitlocker do, if not, do you have any solution
I would like to manage all USB devices plugged on our computers throughout the domain. I would like to be able to block or unblock any of them, while letting other devices working in windows 10 function, example printer , mouse, keyboard. With GPO its…
Azure Storage Encryption at the Storage Container Level
We are planning to use a Storage API which will be accessed by some LoB Apps. Some apps will be using one Storage Account belonging to one Business Unit, other Apps will be using a different storage account if they are part of another BU We are using…
Mounting an Encrypted Data disk (Encrypted with ADE) to another VM from another VM that is being deallocated - Workflow - Clarification requested
Here is a workflow: I have a VM with 2 disks - One is a OS disk and one is a Data Disk (Persistent Disk) I mount the Data disk to the VM and i use ADE Encryption on it using AzureDisEncryptionForLinux VM extension. The key is stored in Azure…
Intune - BitLocker - Azure AD Joined - Script ?
Hello everyone, I'm newbie with Microsoft Intune, and relatively new in my job. For a client I have to migrate him from AirWatch to Intune, but I have a problem with encryption, my client would like to activate encryption silently on his devices…
AKS diskEncryptionSetID disk encryption error 'pod has unbound immediate PersistentVolumeClaims'
kubernetesVersion: 1.19.7 agentPoolProfiles.vmSize: Standard_D3_v2 K8S Charts: https://github.com/sunkararp/IgniteChart We followed Link to setup diskEncryptionSetID. Pods are not getting deployed; stuck with error 'pod has unbound…
migrate encrypted VM from Azure to AWS cloud
Dear team., There is a requirement of Azure VM with Encrypted Disks (SSE+PMK and with ADE and keys are stored in Azure Key vault) which needs to be migrated from Azure to AWS. For Migrating the Azure encrypted VM's to AWS using AWS SMS or AWS Cloud…
Azure Disk Encryption not working
I'm facing issues while enabling Azure Disk Encryption on a Windows Server 2012 R2 OS disk. I'm getting error as "[2.2.0.36]Failed to configure machine for Bitlocker encryption. Reboot the VM and retry the operation". I have gone through…
Does Azure comply to NIST 800-111 standards
Does encryption for data in rest in Azure storage comply to NIST 800-111 standards
Restoring a VM that used to be encrypted
This is my scenerio I have a VM that is encrypted. I remove the encryption from the drives and remove the encryption extension. I then need later want to restore the VM from a time when it was still encrypted. The restore prompts me that the drive…
Disk Encryption Sets broken after transfer of subscription
Managed Identity of Disk Encryption Set get broken after transfer of my subscription. It says Failed to grant permissions to the key vault 'imlibra-me'. Error: An invalid value was provided for 'accessPolicies'. But when I created an another Disk…