Implement disk encryption for Azure virtual machines
Intermediate
Security Engineer
Azure Virtual Machines
Azure Key Vault
Azure
Select and configure the right disk encryption approach for Azure virtual machines. Compare managed disk encryption options, configure encryption at host with customer-managed keys using Disk Encryption Sets, apply confidential disk encryption to confidential virtual machines, and enforce disk encryption compliance using Azure Policy.
Learning objectives
After completing this module, you can:
- Compare Azure managed disk encryption options and select the appropriate approach for new and existing VMs
- Configure encryption at host with customer-managed keys using a Disk Encryption Set and Azure Key Vault
- Apply confidential disk encryption to confidential virtual machines
- Enforce disk encryption compliance using Azure Policy
Prerequisites
- Working knowledge of Azure Virtual Machines, including deploying and managing VMs
- Familiarity with Azure Key Vault, including creating and managing keys
- Understanding of Azure role-based access control (RBAC) and Azure Policy fundamentals
Get started with Azure
Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.