This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 77%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
I have navigated to VM--> Disks--> Additional settings --> I have chosen OS disk and also chosen respective Key vault and key--> after saving it is giving below error. Please suggest
@sns
Thank you for your post!
Error Message:
Disk encryption set resource cannot be added to VM having disks that were encrypted with Azure Disk Encryption. For more information, see https://aka.ms/ssecmkrestrictions
I understand that you're trying to leverage Azure Disk Encryption to encrypt your OS disk but are running into the above error message after modifying your disks' encryption settings within your VM. From your error message, can you share some more info so I can gain a better understanding of your issue?
SSE with PMK or CMK? 
Please keep in mind that, applying ADE to a VM that has disks encrypted with Encryption at Host, server-side encryption with customer-managed keys (SSE + CMK); applying SSE + CMK to a data disk, or adding a data disk with SSE + CMK configured to a VM encrypted with ADE is an unsupported scenario. For more info - ADE Unsupported scenarios.
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
@sns
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.
Hi,
It seems there is a conflict with some resource, please check the troubleshooting steps and also paste the deployment json file for detailed plan review.
disk-encryption-troubleshooting
If it is Linux VM check this page - disk-encryption-troubleshooting
Hope this helps.
JS
==
Please Accept the answer if the information helped you. This will help us and others in the community as well.
Hi JS,
Thank you for the response. It is windows server VM.
Here is the error {
"code": "DeploymentFailed",
"message": "At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/DeployOperations for usage details.",
"details": [
{
"code": "OperationNotAllowed",
"message": "Disk encryption set resource cannot be added to VM having disks that were encrypted with Azure Disk Encryption. For more information, see https://aka.ms/ssecmkrestrictions "
}
]
}
275272-deployment-copy-1.txt275244-deployment-operations-copy.txt