Adding a paragraph for encryption recommendations

gkomatsu · web-flow · commit 25100927b3de · 2022-09-12T08:57:17.000-07:00
New paragraph to guide customers to use Azure Encryptions to protect their data on the VMs. Clarification on the method to use is not enabling BitLocker directly on the OS.
diff --git a/articles/virtual-desktop/security-guide.md b/articles/virtual-desktop/security-guide.md
@@ -88,6 +88,10 @@ When choosing a deployment model, you can either provide remote users access to
 
 Monitor your Azure Virtual Desktop service's usage and availability with [Azure Monitor](https://azure.microsoft.com/services/monitor/). Consider creating [service health alerts](../service-health/alerts-activity-log-service-notifications-portal.md) for the Azure Virtual Desktop service to receive notifications whenever there's a service impacting event.
 
+### Encrypt your VM
+
+Encrypt your VM with [managed disk encryptio options](https://docs.microsoft.com/en-us/azure/virtual-machines/disk-encryption-overview) to protect stored data from unauthorized access. 
+
 ## Session host security best practices
 
 Session hosts are virtual machines that run inside an Azure subscription and virtual network. Your Azure Virtual Desktop deployment's overall security depends on the security controls you put on your session hosts. This section describes best practices for keeping your session hosts secure.
