More news from Microsoft Ignite 2016 announced the general availability of Azure disk encryption for VMs with Linux IaaS and those with premium storage. This includes Std A, D, DS, G, GS series and more.
The Azure Disk Encryption is a solution to provide security and compliance for your organizational needs. The blog post from Microsoft Azure Security and Compliance shared more information:
The Azure Disk Encryption solution supports the following customer scenarios:
- Enable encryption on new IaaS VMs created from pre-encrypted VHD and encryption keys
- Enable encryption on new IaaS VMs created from the Azure Gallery images
- Enable encryption on existing IaaS VMs running in Azure
- Disable encryption on Windows IaaS VMs
- Disable encryption on data drives for Linux IaaS VMs
The solution supports the following for IaaS VMs when enabled in Microsoft Azure:
- Integration with Azure Key Vault
- Standard tier VMs – A, D, DS, G, GS etc series IaaS VMs
- Enable encryption on Windows and Linux IaaS VMs
- Disable encryption on OS and data drives for Windows IaaS VMs
- Disable encryption on data drives for Linux IaaS VMs
- Enable encryption on IaaS VMs running Windows Client OS
- Enable encryption on volumes with mount paths
- Enable encryption on Linux VMs configured with Software-based RAID system
- Enable encryption on Windows VMs configured with Storage Spaces
- All Azure public regions are supported
There is also a full list of scenarios that the encryption will not support so be sure to look those up along with the FAQ. The Azure Disk Encryption is available in all Azure public regions.