Hi @Vamsi S
The ConfidentialComputingType
property with value 'SNP' under the 'capabilities' block is the correct property to filter the Confidential VMs. The value 'SNP' stands for Secure Nested Paging, which is the technology used by AMD processors to provide hardware-based memory isolation for confidential computing.
However, there are other values that can be used for the ConfidentialComputingType
property, depending on the type of confidential computing technology used by the processor. For example, Intel SGX processors use 'SGX' as the value for this property.
SecurityEncryptionTypes : Specifies the EncryptionType of the managed disk. It is set to DiskWithVMGuestState for encryption of the managed disk along with VMGuestState blob, and VMGuestStateOnly for encryption of just the VMGuestState blob. Note: It can be set for only Confidential VMs
References:
https://learn.microsoft.com/en-us/azure/confidential-computing/virtual-machine-solutions-amd
https://learn.microsoft.com/en-us/azure/confidential-computing/confidential-vm-faq-amd
https://learn.microsoft.com/en-us/azure/confidential-computing/virtual-machine-solutions-sgx
Azure and AMD announce landmark in confidential computing evolution
If this does answer your question, please accept it as the answer as a token of appreciation.