You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/security/azure-security-disk-encryption-overview.md
+13-13Lines changed: 13 additions & 13 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -38,7 +38,7 @@ Azure Disk Encryption supports the following customer scenarios:
38
38
* Backing up and restoring encrypted VMs.
39
39
* Bring your own encryption (BYOE) and bring your own key (BYOK) scenarios, in which the customers use their own encryption keys and store them in an Azure key vault.
40
40
41
-
The solution supports the following scenarios for VMs when they're enabled in Microsoft Azure:
41
+
It also supports the following scenarios for VMs when they're enabled in Microsoft Azure:
42
42
43
43
* Integration with Azure Key Vault.
44
44
*[Standard tier VMs](https://azure.microsoft.com/pricing/details/virtual-machines/). [Linux VMs](azure-security-disk-encryption-faq.md#bkmk_LinuxOSSupport) within these tiers must meet the minimum memory requirement of 7 GB.
@@ -59,28 +59,28 @@ The solution supports the following scenarios for VMs when they're enabled in Mi
59
59
60
60
Azure Disk Encryption does not work for the following scenarios, features, and technology:
61
61
62
-
*Encryption of basic tier VM or VMs created through the classic VM creation method.
62
+
*Encrypting basic tier VM or VMs created through the classic VM creation method.
63
63
* Disabling encryption on an OS drive or data drive of a Linux VM when the OS drive is encrypted.
64
-
* OS drive encryption for Linux virtual machine scale sets.
65
-
*Encryption of Windows VMs configured with software-based RAID systems.
66
-
*Encryption of custom images on Linux VMs.
64
+
*Encrypting OS drive for Linux virtual machine scale sets.
65
+
*Encrypting Windows VMs configured with software-based RAID systems.
66
+
*Encrypting custom images on Linux VMs.
67
67
* Integration with an on-premises key management system.
68
68
* Azure Files (shared file system).
69
69
* Network File System (NFS).
70
70
* Dynamic volumes.
71
71
72
72
## Encryption features
73
73
74
-
When you enable and deploy Disk Encryption for Azure VMs, the following capabilities are enabled depending on the provided configuration:
74
+
When you enable and deploy Azure Disk Encryption for Azure VMs, you can configure the following capabilities to be enabled:
75
75
76
-
*Encryption of the OS volume to protect the boot volume at rest in your storage.
77
-
*Encryption of data volumes to protect the data volumes at rest in your storage.
76
+
*Encrypting the OS volume to protect the boot volume at rest in your storage.
77
+
*Encryptng data volumes to protect the data volumes at rest in your storage.
78
78
* Disabling encryption on the OS and data drives for Windows VMs.
79
79
* Disabling encryption on the data drives for Linux VMs (only when the OS drive isn't encrypted).
80
-
*Safeguard the encryption keys and secrets in your Azure Key Vault subscription.
81
-
*Report the encryption status of the encrypted VM.
82
-
*Remove the disk encryption configuration settings from the VM.
83
-
*Back up and restore the encrypted VMs by using the Azure Backup service.
80
+
*Safeguarding the encryption keys and secrets in your Azure Key Vault subscription.
81
+
*Reporting the encryption status of the encrypted VM.
82
+
*Removing the disk encryption configuration settings from the VM.
83
+
*Backing up and restoring the encrypted VMs by using the Azure Backup service.
84
84
85
85
Azure Disk Encryption for VMs for Windows and Linux includes:
86
86
@@ -90,7 +90,7 @@ Azure Disk Encryption for VMs for Windows and Linux includes:
90
90
*[The Azure CLI disk encryption cmdlets](/cli/azure/vm/encryption?view=azure-cli-latest).
91
91
*[The Azure Resource Manager disk encryption templates](azure-security-disk-encryption-appendix.md#resource-manager-templates).
92
92
93
-
The Azure Disk Encryption solution is supported on VMs that run Windows or Linux OS. For more information about the supported operating systems, see [Frequently asked questions](azure-security-disk-encryption-faq.md#bkmk_LinuxOSSupport).
93
+
Azure Disk Encryption is supported on VMs that run Windows or Linux OS. For more information about the supported operating systems, see [Frequently asked questions](azure-security-disk-encryption-faq.md#bkmk_LinuxOSSupport).
94
94
95
95
> [!NOTE]
96
96
> There's no additional charge to encrypt VM disks with Azure Disk Encryption. Standard [Key Vault pricing](https://azure.microsoft.com/pricing/details/key-vault/) applies to the key vault that's used to store the encryption keys.
0 commit comments