Your turn

  • Project: Disk Encryption
  • Project goalThe goal of this project is to successfully deploy an Azure Key Vault and to leverage the key vault to encrypt the VM that you deployed in the Data Disks project
  • Key commands:
    • Register-AzureRmResourceProvider
    • New-AzureRmKeyVault
    • Add-AzureKeyVaultKey
    • New-AzureRmADApplication
    • New-AzureRmADServicePrincipal
    • Set-AzureRmKeyVaultAccessPolicy
    • Set-AzureRmVMDiskEncryptionExtension
    • Get-AzureRmVmDiskEncryptionStatus
  • General steps:
    1. Setup an Azure Key Vault
    2. Create an encryption key
    3. Create an Azure AD service principal
    4. Configure encryption
    5. Encrypt the VM that you deployed in the Data Disks project
    6. Verify VM is encrypted
    7. Delete the resource group that contains the VM
  • Validation: Use the Get-AzureRmVmDiskEncryptionStatus command to confirm that the OS disk and any data disks attached to the VM are encrypted
  • Reference info: The Encrypting Virtual Machine Disks section

 

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
3.145.186.6