What happens to encrypted disk with Customer Managed Keys (CMK) if we delete the VM?

Rajesh Swarnkar 851 Reputation points
2022-11-22T10:02:02.237+00:00

Hi there, A simple query about CMK encrypted disk. If I delete a VM, will that also remove the Disk encryption on all disks?

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,541 questions
0 comments No comments
{count} votes

Accepted answer
  1. Prrudram-MSFT 22,976 Reputation points
    2022-11-22T20:00:09.363+00:00

    Hello @Rajesh Swarnkar ,

    Thank you for reaching out to the Microsoft Q&A platform. Happy to answer your question.

    In case, if you chose not to delete the disks along with the VM, the disks will remain with disk encryption. It doesn't remove the disk encryption.

    One of the restrictions customer managed keys got is, if this feature is enabled for your disk, you cannot disable it. If you need to work around this, you must copy all the data to an entirely different managed disk that isn't using customer-managed keys:
    For Linux: Copy a managed disk
    For Windows: Copy a managed disk

    For details, see https://learn.microsoft.com/en-us/azure/virtual-machines/disks-enable-customer-managed-keys-portal

    Hope this helps!

    Please "Accept as Answer" and Upvote if the answer provided is useful, so that you can help others in the community looking for remediation for similar issues.

    0 comments No comments

0 additional answers

Sort by: Most helpful