Share via

Azure Disk Encryption or EncryptionAtHost

Handian Sudianto 5,621 Reputation points
2024-11-28T00:28:57.48+00:00

Hello,

I have defender recommendation "Windows virtual machines should enable Azure Disk Encryption or EncryptionAtHost"

Anyone know if we do this, there are any extra cost?

Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
653 questions
0 comments
Accepted answer
  1. Keshavulu Dasari 2,420 Reputation points Microsoft Vendor
    2024-11-28T01:15:36.3933333+00:00

    Hi Handian Sudianto,
    Welcome to Microsoft Q&A Forum. Thanks for posting you query here!
    Enabling Azure Disk Encryption itself does not incur additional costs. However, there are charges associated with using Azure Key Vault for managing the encryption keys

    For EncryptionAtHost, if you use Platform Managed Keys (PMK), there is no additional cost. But if you opt for Customer Managed Keys (CMK), you will incur costs related to Azure Key Vault

    For more information:
    https://learn.microsoft.com/en-us/azure/virtual-machines/windows/disk-encryption-faq
    https://learn.microsoft.com/en-us/azure/virtual-machines/linux/disks-enable-host-based-encryption-cli

    Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
    User's image

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.