Merge pull request #9674 from mabicca/patch-13

Adding notes about the requirement of the vfat driver

Author: ktoliver

articles/virtual-machines/linux/encrypt-disks.md

@@ -21,6 +21,9 @@ ms.author: iainfou
 # How to encrypt virtual disks on a Linux VM
 For enhanced virtual machine (VM) security and compliance, virtual disks and the VM itself can be encrypted. VMs are encrypted using cryptographic keys that are secured in an Azure Key Vault. You control these cryptographic keys and can audit their use. This article details how to encrypt virtual disks on a Linux VM using the Azure CLI 2.0. You can also perform these steps with the [Azure CLI 1.0](encrypt-disks-nodejs.md?toc=%2fazure%2fvirtual-machines%2flinux%2ftoc.json).
 
+> [!NOTE]
+> Make sure that you have the vfat driver enabled in your Linux VM. Some security practices such as CIS benchmarks ask to disable the vfat driver. That driver is required for encryption to work after the process is finished.
+
 ## Quick commands
 If you need to quickly accomplish the task, the following section details the base commands to encrypt virtual disks on your VM. More detailed information and context for each step can be found the rest of the document, [starting here](#overview-of-disk-encryption).
 
@@ -143,6 +146,7 @@ Supported scenarios and requirements for disk encryption:
 * All resources (such as Key Vault, Storage account, and VM) must be in the same Azure region and subscription.
 * Standard A, D, DS, G, GS, etc., series VMs.
 * Updating the cryptographic keys on an already encrypted Linux VM.
+* VFAT driver is enabled in the Linux VM.
 
 Disk encryption is not currently supported in the following scenarios: