|
1 | 1 | --- |
2 | | -title: Manage Trusted launch Arc VM guest state protection key on Azure Local |
3 | | -description: Learn how to manage a Trusted launch Arc VM guest state protection key on Azure Local. |
| 2 | +title: Manage Trusted launch for Azure Local VM enabled by Azure Arc guest state protection key |
| 3 | +description: Learn how to manage a Trusted launch for Azure Local VM enabled by Azure Arc guest state protection key. |
4 | 4 | author: alkohli |
5 | 5 | ms.author: alkohli |
6 | 6 | ms.topic: how-to |
7 | 7 | ms.service: azure-local |
8 | 8 | ms.reviewer: alkohli |
9 | | -ms.date: 02/21/2025 |
| 9 | +ms.date: 03/27/2025 |
10 | 10 | --- |
11 | 11 |
|
12 | | -# Manage backup and recovery of Trusted launch Arc VMs on Azure Local |
| 12 | +# Manage backup and recovery of Trusted launch for Azure Local VMs enabled by Azure Arc |
13 | 13 |
|
14 | 14 | [!INCLUDE [applies-to](../includes/hci-applies-to-23h2.md)] |
15 | 15 |
|
16 | | -This article describes how to manually back up and restore a Trusted launch Arc VM on Azure Local. |
| 16 | +This article describes how to manually back up and restore a Trusted launch for Azure Local VM enabled by Azure Arc. |
17 | 17 |
|
18 | | -Unlike standard Azure Arc VMs, Trusted launch Arc VMs use a VM guest state protection (GSP) key to protect the VM guest state, including the virtual TPM (vTPM) state, while at rest. The VM GSP key is stored in a local key vault in the Azure Local system where the VM resides. |
| 18 | +Unlike standard Azure Local VMs, Trusted launch for Azure Local VMs use a VM guest state protection (GSP) key to protect the VM guest state, including the virtual TPM (vTPM) state, while at rest. The VM GSP key is stored in a local key vault in the Azure Local system where the VM resides. |
19 | 19 |
|
20 | | -Trusted launch Arc VMs store the VM guest state in two files, VM Guest state (VMGS) and VM Runtime state (VMRS). If the VM GSP key is lost, you can't boot up a Trusted launch Arc VM. |
| 20 | +Trusted launch for Azure Local VMs store the VM guest state in two files, VM Guest state (VMGS) and VM Runtime state (VMRS). If the VM GSP key is lost, you can't boot up a Trusted launch for Azure Local VM. |
21 | 21 |
|
22 | | -It is important that you back up your Trusted launch Arc VM periodically, so you can recover your VM in the event of a data loss. To back up a Trusted launch VM, back up all the VM files, including VMGS and VMRS files. Additionally, back up the VM GSP key to a backup key vault. |
| 22 | +It is important that you back up your Trusted launch for Azure Local VM periodically, so you can recover your VM in the event of a data loss. To back up a Trusted launch VM, back up all the VM files, including VMGS and VMRS files. Additionally, back up the VM GSP key to a backup key vault. |
23 | 23 |
|
24 | | -Similarly, to restore a Trusted launch Arc VM to a target Azure Local system, restore all the VM files, including VMGS and VMRS files. Additionally, restore the VM GSP key from the backup key vault to another key vault on the target Azure Local system. |
| 24 | +Similarly, to restore a Trusted launch for Azure Local VM to a target Azure Local system, restore all the VM files, including VMGS and VMRS files. Additionally, restore the VM GSP key from the backup key vault to another key vault on the target Azure Local system. |
25 | 25 |
|
26 | | -The following sections describe how you can back up the Trusted launch Arc VM and restore it in the event of a data loss. |
| 26 | +The following sections describe how you can back up the Trusted launch for Azure Local VM and restore it in the event of a data loss. |
27 | 27 |
|
28 | 28 | ## Back up the VM |
29 | 29 |
|
30 | | -You can use [Export-VM](/powershell/module/hyper-v/export-vm) to obtain a copy of all the VM files, including VMGS and VMRS files, for your Trusted launch Arc VM. You can then back up those VM files. |
| 30 | +You can use [Export-VM](/powershell/module/hyper-v/export-vm) to obtain a copy of all the VM files, including VMGS and VMRS files, for your Trusted launch for Azure Local VM. You can then back up those VM files. |
31 | 31 |
|
32 | 32 | Follow these steps to copy the VM GSP key from the key vault on the Azure Local system (where the VM resides) to a backup key vault on a different Azure Local system: |
33 | 33 |
|
@@ -91,7 +91,7 @@ In the event of a data loss, use the backup copy of your VM files, and restore t |
91 | 91 | Follow these steps to copy the VM GSP key from the backup key vault in the Azure Local system (where the backup copy of the VM GSP key was stored) to the key vault on the target Azure Local system (where the VM needs to be restored). |
92 | 92 |
|
93 | 93 | > [!NOTE] |
94 | | -> Trusted launch Arc VMs restored on an alternate Azure Local system (different from the Azure Local system where the VM originally resided) can't be managed from the Azure control plane. |
| 94 | +> Trusted launch for Azure Local VMs restored on an alternate Azure Local system (different from the Azure Local system where the VM originally resided) can't be managed from the Azure control plane. |
95 | 95 |
|
96 | 96 |
|
97 | 97 | ### 1. On the source Azure Local system where the VM needs to be restored |
|
0 commit comments