Azure Disk Encryption

Azure VM - Managed disk encryption in transit between VM and disk storage service ?

Normally, I would be inclined to assume that data are encrypted in transit between a VM and the managed disk storage service. However, in [Enable end-to-end encryption using encryption at host][1], it is stated that “When you enable encryption at…

How to get bitlocker recovery key from Azure Portal for old MS account.

Hello, Few years ago Dell has sold new laptop to me. It appears that laptop was protected with Bitlocker as Dell usually do. I was not notified on that, so - I didn't switch it off or store recovery key somewhere. Now laptop get into bitlocker…

scope of Encryption at host with platform managed keys . Copy disk across tenants

Hello Everyone, Would like to understand the scope of platform managed keys. I have enabled encryption at host with platform managed keys. Can i now take a snapshot of the disk and move it to a different tenant / subscription . Would i be able to…

What's the difference between New-AzureRmResourceGroupDeployment and New-AzDiskEncryptionSets when creating the DiskEncryptionSet?

I'm trying to create DiskEncryptionSet resource in TDS and then fetch the managed identity with power shell script. There are two ways could achieve this. The first is using New-AzDiskEncryptionSet and Get-AzServicePrincipal commands with Az Power…

Azure Storage Encrytion Scope performance

The docs for Encryption Scopes for Blob storage does not talk about the performance implications when Encryption Scopes are used. Is there a recommended limit on the number of scopes that can be created within a given storage account after which we start…

Azure Backup Failure - Could not communicate with the VM agent for snapshot status - Snapshot VM sub task timed out

Hi, I have one query regarding Azure Backup Error on Azure VM. Below are the Observation: Extensions Provisioning : Failed (Due to that Disk Encryption shows Failed) Antivirus Block : Not Observed any AV issues. Network…

Can a Different Asymetric Key be used to Wrap a Different Symetric Key

Hello All Can someone please help me with the following question, I understand when using Azure KeyVault Premium (HSM backed) if I create a symmetric key (secret) in Azure Key vault (for example an AES key for example used to encrypt data at…

I don't see the parameter for TDE in my ARM template

I cannot find the boolean parameter for enabling Transparent Data Encryption. I included my parameters for a database, server and storage account below. Is there perhaps a reason why this parameter is not shown? And can I leave a way all the network…

Disk Encryption in Azure VM

I want to apply storage disk encryption on my Azure VM with minimum downtime or without stopping my VM.

Why replication method on azure site recovery keep recognizing disk encryption despite it is not enabled on the VM

Why replication method on azure site recovery keep recognizing disk encryption despite it is not enabled on the VM, I have the VM without disk encryption extension.

About Modern Standby - Standard NVMe drive in Sleepstudy report.

Dear Sir or Madam: We try run the modern standby function in our platform, then test result show two Standard NVMe driver info (but we only connect one disk drive.). How can I judge this situation? One data list Pass(Green background) but another…

Linux VM - Azure OS disk to store data

I'm planning to deploy an ubuntu VM to publish my web based application. It does not use much storage. Can I use Azure OS disk to store data? Is there any downside for this ?

Schedule for RHEL8 ADE support

Is there already a schedule for RHEL8/CentOS 8 support for ADE?

Are platform managed keys (SSE+PMK at rest) per resource or do they use a shared key across customers?

Trying to find official confirmation. My AZ-500 course indicated they were per resource but mostly stressed that it was all backend and you don't have to worry about it. Security has concerns about shared keys being used or leaked as that was a concern…

azure disk can not select customer's key vault

How to define the custom azure policy to enfore azure disk encryption for 100s of machines all at once in a subscription

Hi Everyone, I am trying to create the remediation for one of the defender for cloud recommendations(VMs should be encrypted with temp disks, cache and the data flowing between vm and storage account) .Can somebody please advise me the solution for…

Bitlocker could not be enabled

I have a Dell Laptop that is running Windows 10 Version 21H1. I recently had the mother board replaced. When trying to enable bitlocker, I get the following error: "Bitlocker Could Not Be Enabled. The Bitlocker Encryption key cannot be obtained.…

How to use GnuPG in HDInsight for encryption and decryption?

Hi, I am working with the HDInsight Spark cluster on Azure. Trying to encrypt files with pgp encryption using our private key. Is there a way that this can achieve rather than using the inbuilt encryption mechanism? How to set the home for GnuPG…

Azure Service Bus Encryption at Rest & Transit (Standard Tier)

Could someone help out in answering this question if Azure Service Bus (Standard Tier) also follows encryption at Rest & Transit as it is for Premium Tier. How could this be verified for a standard tier deployment if encryption is enabled or not. …

I have uploaded my vhdx file to Azure as Block blob. How can I create vm from it?

I have uploaded my vhdx file to Azure as Block blob. How can I create vm from it? Please give me the step by step procedure. If it is not possible then what is the other way to do that? If anyone can help me I will be grateful to that.