Skip to content

Commit 27bf115

Browse files
v-shilsv-shils
authored
Merge pull request #108342 from simonesavi/adeextensionfix
Fixed Typos in Azure Disk Encryption Extension
2 parents cb08afc + 7b53d92 commit 27bf115

File tree

3 files changed

+65
-65
lines changed

3 files changed

+65
-65
lines changed

articles/security/fundamentals/azure-disk-encryption-vms-vmss.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ The following articles provide guidance for encrypting Linux virtual machines.
2525
- [Create and encrypt a Linux VM with Azure CLI](../../virtual-machines/linux/disk-encryption-cli-quickstart.md)
2626
- [Create and encrypt a Linux VM with Azure PowerShell](../../virtual-machines/linux/disk-encryption-powershell-quickstart.md)
2727
- [Create and encrypt a Linux VM with the Azure portal](../../virtual-machines/linux/disk-encryption-portal-quickstart.md)
28-
- [Azure Disk Encryption Extension Schemata for Linux](../../virtual-machines/extensions/azure-disk-enc-linux.md)
28+
- [Azure Disk Encryption Extension Schema for Linux](../../virtual-machines/extensions/azure-disk-enc-linux.md)
2929
- [Creating and configuring a key vault for Azure Disk Encryption](../../virtual-machines/linux/disk-encryption-key-vault.md)
3030
- [Azure Disk Encryption sample scripts](../../virtual-machines/linux/disk-encryption-sample-scripts.md)
3131
- [Azure Disk Encryption troubleshooting](../../virtual-machines/linux/disk-encryption-troubleshooting.md)
@@ -48,7 +48,7 @@ The following articles provide guidance for encrypting Windows virtual machines.
4848
- [Create and encrypt a Windows VM with Azure CLI](../../virtual-machines/windows/disk-encryption-cli-quickstart.md)
4949
- [Create and encrypt a Windows VM with Azure PowerShell](../../virtual-machines/windows/disk-encryption-powershell-quickstart.md)
5050
- [Create and encrypt a Windows VM with the Azure portal](../../virtual-machines/windows/disk-encryption-portal-quickstart.md)
51-
- [Azure Disk Encryption Extension Schemata for Windows](../../virtual-machines/extensions/azure-disk-enc-windows.md)
51+
- [Azure Disk Encryption Extension Schema for Windows](../../virtual-machines/extensions/azure-disk-enc-windows.md)
5252
- [Creating and configuring a key vault for Azure Disk Encryption](../../virtual-machines/windows/disk-encryption-key-vault.md)
5353
- [Azure Disk Encryption sample scripts](../../virtual-machines/windows/disk-encryption-sample-scripts.md)
5454
- [Azure Disk Encryption troubleshooting](../../virtual-machines/windows/disk-encryption-troubleshooting.md)

articles/virtual-machines/extensions/azure-disk-enc-linux.md

Lines changed: 46 additions & 46 deletions
Original file line numberDiff line numberDiff line change
@@ -31,7 +31,7 @@ For a full list of prerequisites, see [Azure Disk Encryption for Linux VMs](../l
3131
- [Networking requirements](../linux/disk-encryption-overview.md#networking-requirements)
3232
- [Encryption key storage requirements](../linux/disk-encryption-overview.md#encryption-key-storage-requirements)
3333

34-
## Extension schemata
34+
## Extension Schema
3535

3636
There are two versions of extension schema for Azure Disk Encryption (ADE):
3737
- v1.1 - A newer recommended schema that does not use Azure Active Directory (AAD) properties.
@@ -51,18 +51,18 @@ The v1.1 schema is recommended and does not require Azure Active Directory (AAD)
5151
"location": "[location]",
5252
"properties": {
5353
"publisher": "Microsoft.Azure.Security",
54-
"type": "AzureDiskEncryptionForLinux",
55-
"typeHandlerVersion": "[extensionVersion]",
56-
"autoUpgradeMinorVersion": true,
54+
"type": "AzureDiskEncryptionForLinux",
55+
"typeHandlerVersion": "1.1",
56+
"autoUpgradeMinorVersion": true,
5757
"settings": {
5858
"DiskFormatQuery": "[diskFormatQuery]",
5959
"EncryptionOperation": "[encryptionOperation]",
60-
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
61-
"KeyVaultURL": "[keyVaultURL]",
62-
"KeyVaultResourceId": "[KeyVaultResourceId]",
63-
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
64-
"KekVaultResourceId": "[KekVaultResourceId",
65-
"SequenceVersion": "sequenceVersion]",
60+
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
61+
"KeyVaultURL": "[keyVaultURL]",
62+
"KeyVaultResourceId": "[KeyVaultResourceId]",
63+
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
64+
"KekVaultResourceId": "[KekVaultResourceId",
65+
"SequenceVersion": "sequenceVersion]",
6666
"VolumeType": "[volumeType]"
6767
}
6868
}
@@ -83,23 +83,23 @@ Using `AADClientSecret`:
8383
"apiVersion": "2019-07-01",
8484
"location": "[location]",
8585
"properties": {
86-
"protectedSettings": {
87-
"AADClientSecret": "[aadClientSecret]",
88-
"Passphrase": "[passphrase]"
89-
},
90-
"publisher": "Microsoft.Azure.Security",
91-
"type": "AzureDiskEncryptionForLinux",
92-
"typeHandlerVersion": "[extensionVersion]",
93-
"settings": {
94-
"AADClientID": "[aadClientID]",
95-
"DiskFormatQuery": "[diskFormatQuery]",
96-
"EncryptionOperation": "[encryptionOperation]",
97-
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
98-
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
99-
"KeyVaultURL": "[keyVaultURL]",
100-
"SequenceVersion": "sequenceVersion]",
101-
"VolumeType": "[volumeType]"
102-
}
86+
"protectedSettings": {
87+
"AADClientSecret": "[aadClientSecret]",
88+
"Passphrase": "[passphrase]"
89+
},
90+
"publisher": "Microsoft.Azure.Security",
91+
"type": "AzureDiskEncryptionForLinux",
92+
"typeHandlerVersion": "0.1",
93+
"settings": {
94+
"AADClientID": "[aadClientID]",
95+
"DiskFormatQuery": "[diskFormatQuery]",
96+
"EncryptionOperation": "[encryptionOperation]",
97+
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
98+
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
99+
"KeyVaultURL": "[keyVaultURL]",
100+
"SequenceVersion": "sequenceVersion]",
101+
"VolumeType": "[volumeType]"
102+
}
103103
}
104104
}
105105
```
@@ -113,23 +113,23 @@ Using `AADClientCertificate`:
113113
"apiVersion": "2019-07-01",
114114
"location": "[location]",
115115
"properties": {
116-
"protectedSettings": {
117-
"AADClientCertificate": "[aadClientCertificate]",
118-
"Passphrase": "[passphrase]"
119-
},
120-
"publisher": "Microsoft.Azure.Security",
121-
"type": "AzureDiskEncryptionForLinux",
122-
"typeHandlerVersion": "[extensionVersion]",
123-
"settings": {
124-
"AADClientID": "[aadClientID]",
125-
"DiskFormatQuery": "[diskFormatQuery]",
126-
"EncryptionOperation": "[encryptionOperation]",
127-
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
128-
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
129-
"KeyVaultURL": "[keyVaultURL]",
130-
"SequenceVersion": "sequenceVersion]",
131-
"VolumeType": "[volumeType]"
132-
}
116+
"protectedSettings": {
117+
"AADClientCertificate": "[aadClientCertificate]",
118+
"Passphrase": "[passphrase]"
119+
},
120+
"publisher": "Microsoft.Azure.Security",
121+
"type": "AzureDiskEncryptionForLinux",
122+
"typeHandlerVersion": "0.1",
123+
"settings": {
124+
"AADClientID": "[aadClientID]",
125+
"DiskFormatQuery": "[diskFormatQuery]",
126+
"EncryptionOperation": "[encryptionOperation]",
127+
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
128+
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
129+
"KeyVaultURL": "[keyVaultURL]",
130+
"SequenceVersion": "sequenceVersion]",
131+
"VolumeType": "[volumeType]"
132+
}
133133
}
134134
}
135135
```
@@ -142,7 +142,7 @@ Using `AADClientCertificate`:
142142
| apiVersion | 2019-07-01 | date |
143143
| publisher | Microsoft.Azure.Security | string |
144144
| type | AzureDiskEncryptionForLinux | string |
145-
| typeHandlerVersion | 0.1, 1.1 | int |
145+
| typeHandlerVersion | 1.1, 0.1 | int |
146146
| (0.1 schema) AADClientID | xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx | guid |
147147
| (0.1 schema) AADClientSecret | password | string |
148148
| (0.1 schema) AADClientCertificate | thumbprint | string |
@@ -169,7 +169,7 @@ For an example of template deployment based on schema v0.1, see the Azure Quicks
169169
> - Disabling encryption on Linux VMs is only supported for data volumes. It is not supported on data or OS volumes if the OS volume has been encrypted.
170170
171171
>[!NOTE]
172-
> Also if `VolumeType` parameter is set to Data or All, data disks will be encrypted only if they are properly mounted.
172+
> Also if `VolumeType` parameter is set to All, data disks will be encrypted only if they are properly mounted.
173173
174174
## Troubleshoot and support
175175

articles/virtual-machines/extensions/azure-disk-enc-windows.md

Lines changed: 17 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ For a full list of prerequisites, see [Azure Disk Encryption for Windows VMs](..
3030
- [Networking requirements](../windows/disk-encryption-overview.md#networking-requirements)
3131
- [Group Policy requirements](../windows/disk-encryption-overview.md#group-policy-requirements)
3232

33-
## Extension schemata
33+
## Extension Schema
3434

3535
There are two versions of extension schema for Azure Disk Encryption (ADE):
3636
- v2.2 - A newer recommended schema that does not use Azure Active Directory (AAD) properties.
@@ -49,20 +49,20 @@ The v2.2 schema is recommended for all new VMs and does not require Azure Active
4949
"apiVersion": "2019-07-01",
5050
"location": "[location]",
5151
"properties": {
52-
"publisher": "Microsoft.Azure.Security",
53-
"type": "AzureDiskEncryption",
54-
"typeHandlerVersion": "[extensionVersion]",
55-
"autoUpgradeMinorVersion": true,
56-
"settings": {
57-
"EncryptionOperation": "[encryptionOperation]",
58-
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
59-
"KeyVaultURL": "[keyVaultURL]",
60-
"KekVaultResourceId": "[keyVaultResourceID]",
61-
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
62-
"KeyVaultResourceId": "[keyVaultResourceID]",
63-
"SequenceVersion": "sequenceVersion]",
64-
"VolumeType": "[volumeType]"
65-
}
52+
"publisher": "Microsoft.Azure.Security",
53+
"type": "AzureDiskEncryption",
54+
"typeHandlerVersion": "2.2",
55+
"autoUpgradeMinorVersion": true,
56+
"settings": {
57+
"EncryptionOperation": "[encryptionOperation]",
58+
"KeyEncryptionAlgorithm": "[keyEncryptionAlgorithm]",
59+
"KeyVaultURL": "[keyVaultURL]",
60+
"KekVaultResourceId": "[keyVaultResourceID]",
61+
"KeyEncryptionKeyURL": "[keyEncryptionKeyURL]",
62+
"KeyVaultResourceId": "[keyVaultResourceID]",
63+
"SequenceVersion": "sequenceVersion]",
64+
"VolumeType": "[volumeType]"
65+
}
6666
}
6767
}
6868
```
@@ -86,7 +86,7 @@ Using `aadClientSecret`:
8686
},
8787
"publisher": "Microsoft.Azure.Security",
8888
"type": "AzureDiskEncryption",
89-
"typeHandlerVersion": "[extensionVersion]",
89+
"typeHandlerVersion": "1.1",
9090
"settings": {
9191
"AADClientID": "[aadClientID]",
9292
"EncryptionOperation": "[encryptionOperation]",
@@ -116,7 +116,7 @@ Using `AADClientCertificate`:
116116
},
117117
"publisher": "Microsoft.Azure.Security",
118118
"type": "AzureDiskEncryption",
119-
"typeHandlerVersion": "[extensionVersion]",
119+
"typeHandlerVersion": "1.1",
120120
"settings": {
121121
"AADClientID": "[aadClientID]",
122122
"EncryptionOperation": "[encryptionOperation]",

0 commit comments

Comments
 (0)