Share via

What happens to encrypted disk with Customer Managed Keys (CMK) if we delete the VM?

Rajesh Swarnkar 911 Reputation points
2022-11-22T10:02:02.237+00:00

Hi there, A simple query about CMK encrypted disk. If I delete a VM, will that also remove the Disk encryption on all disks?

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
9,043 questions
0 comments
Accepted answer
  1. Prrudram-MSFT 28,281 Reputation points Microsoft Employee Moderator
    2022-11-22T20:00:09.363+00:00

    Hello @Rajesh Swarnkar ,

    Thank you for reaching out to the Microsoft Q&A platform. Happy to answer your question.

    In case, if you chose not to delete the disks along with the VM, the disks will remain with disk encryption. It doesn't remove the disk encryption.

    One of the restrictions customer managed keys got is, if this feature is enabled for your disk, you cannot disable it. If you need to work around this, you must copy all the data to an entirely different managed disk that isn't using customer-managed keys:
    For Linux: Copy a managed disk
    For Windows: Copy a managed disk

    For details, see https://learn.microsoft.com/en-us/azure/virtual-machines/disks-enable-customer-managed-keys-portal

    Hope this helps!

    Please "Accept as Answer" and Upvote if the answer provided is useful, so that you can help others in the community looking for remediation for similar issues.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.