New-AzStorageEncryptionScope
Cria um escopo de criptografia para uma conta de armazenamento.
Syntax
New-AzStorageEncryptionScope
[-ResourceGroupName] <String>
[-StorageAccountName] <String>
-EncryptionScopeName <String>
[-StorageEncryption]
[-RequireInfrastructureEncryption]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-AzStorageEncryptionScope
[-ResourceGroupName] <String>
[-StorageAccountName] <String>
-EncryptionScopeName <String>
[-KeyvaultEncryption]
-KeyUri <String>
[-RequireInfrastructureEncryption]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-AzStorageEncryptionScope
-StorageAccount <PSStorageAccount>
-EncryptionScopeName <String>
[-StorageEncryption]
[-RequireInfrastructureEncryption]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
New-AzStorageEncryptionScope
-StorageAccount <PSStorageAccount>
-EncryptionScopeName <String>
[-KeyvaultEncryption]
-KeyUri <String>
[-RequireInfrastructureEncryption]
[-DefaultProfile <IAzureContextContainer>]
[-WhatIf]
[-Confirm]
[<CommonParameters>]
Description
O cmdlet New-AzStorageEncryptionScope cria um escopo de criptografia para uma conta de armazenamento.
Exemplos
Exemplo 1: Criar um escopo de criptografia com criptografia de armazenamento
New-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" -EncryptionScopeName testscope -StorageEncryption
ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount
Name State Source KeyVaultKeyUri RequireInfrastructureEncryption
---- ----- ------ -------------- -------------------------------
testscope Enabled Microsoft.Storage
Esse comando cria um escopo de criptografia com a Criptografia de Armazenamento.
Exemplo 2: Criar um escopo de criptografia com Keyvault Encryption e RequireInfrastructureEncryption
New-AzStorageEncryptionScope -ResourceGroupName "myresourcegroup" -AccountName "mystorageaccount" `
-EncryptionScopeName testscope -KeyvaultEncryption -KeyUri "https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57" `
-RequireInfrastructureEncryption
ResourceGroupName: myresourcegroup, StorageAccountName: mystorageaccount
Name State Source KeyVaultKeyUri RequireInfrastructureEncryption
---- ----- ------ -------------- -------------------------------
testscope Enabled Microsoft.Keyvault https://keyvalutname.vault.azure.net:443/keys/keyname/34a0ba563b4243d9a0ef2b1d3c0c7d57 True
Esse comando cria um escopo de criptografia com Keyvault Encryption e RequireInfrastructureEncryption. A identidade da conta de armazenamento precisa ter permissões get,wrapkey,unwrapkey para a chave keyvault.
Parâmetros
-Confirm
Solicita sua confirmação antes de executar o cmdlet.
Type: | SwitchParameter |
Aliases: | cf |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-DefaultProfile
As credenciais, a conta, o locatário e a assinatura usados para a comunicação com o Azure.
Type: | IAzureContextContainer |
Aliases: | AzContext, AzureRmContext, AzureCredential |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-EncryptionScopeName
Nome do EncryptionScope do Armazenamento do Azure
Type: | String |
Aliases: | Name |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-KeyUri
O Uri chave
Type: | String |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-KeyvaultEncryption
Criar escopo de criptografia com keySource como Microsoft.Keyvault
Type: | SwitchParameter |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-RequireInfrastructureEncryption
O escopo de criptografia aplicará uma camada secundária de criptografia com chaves gerenciadas por plataforma para dados em repouso.
Type: | SwitchParameter |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-ResourceGroupName
Nome do grupo de recursos.
Type: | String |
Position: | 0 |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-StorageAccount
Objeto de conta de armazenamento
Type: | PSStorageAccount |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | True |
Accept wildcard characters: | False |
-StorageAccountName
Nome da conta de armazenamento.
Type: | String |
Aliases: | AccountName |
Position: | 1 |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-StorageEncryption
Crie um escopo de criptografia com keySource como Microsoft.Storage.
Type: | SwitchParameter |
Position: | Named |
Default value: | None |
Required: | True |
Accept pipeline input: | False |
Accept wildcard characters: | False |
-WhatIf
Mostra o que aconteceria se o cmdlet fosse executado. O cmdlet não é executado.
Type: | SwitchParameter |
Aliases: | wi |
Position: | Named |
Default value: | None |
Required: | False |
Accept pipeline input: | False |
Accept wildcard characters: | False |
Entradas
Saídas
Azure PowerShell
Comentários
https://aka.ms/ContentUserFeedback.
Em breve: Ao longo de 2024, eliminaremos os problemas do GitHub como o mecanismo de comentários para conteúdo e o substituiremos por um novo sistema de comentários. Para obter mais informações, consulteEnviar e exibir comentários de