Microsoft.Compute diskEncryptionSets 2020-05-01
- Article
-
-
Bicep resource definition
The diskEncryptionSets resource type can be deployed with operations that target:
For a list of changed properties in each API version, see change log.
To create a Microsoft.Compute/diskEncryptionSets resource, add the following Bicep to your template.
resource symbolicname 'Microsoft.Compute/diskEncryptionSets@2020-05-01' = {
identity: {
type: 'string'
}
location: 'string'
name: 'string'
properties: {
activeKey: {
keyUrl: 'string'
sourceVault: {
id: 'string'
}
}
encryptionType: 'string'
}
tags: {
{customized property}: 'string'
}
}
Property values
EncryptionSetIdentity
| Name |
Description |
Value |
| type |
The type of Managed Identity used by the DiskEncryptionSet. Only SystemAssigned is supported. |
'SystemAssigned' |
EncryptionSetProperties
| Name |
Description |
Value |
| activeKey |
The key vault key which is currently used by this disk encryption set. |
KeyVaultAndKeyReference |
| encryptionType |
The type of key used to encrypt the data of the disk. |
'EncryptionAtRestWithCustomerKey'
'EncryptionAtRestWithPlatformAndCustomerKeys'
'EncryptionAtRestWithPlatformKey' |
KeyVaultAndKeyReference
| Name |
Description |
Value |
| keyUrl |
Url pointing to a key or secret in KeyVault |
string (required) |
| sourceVault |
Resource id of the KeyVault containing the key or secret |
SourceVault (required) |
Microsoft.Compute/diskEncryptionSets
| Name |
Description |
Value |
| identity |
The managed identity for the disk encryption set. It should be given permission on the key vault before it can be used to encrypt disks. |
EncryptionSetIdentity |
| location |
Resource location |
string (required) |
| name |
The resource name |
string (required) |
| properties |
|
EncryptionSetProperties |
| tags |
Resource tags |
Dictionary of tag names and values. See Tags in templates |
SourceVault
| Name |
Description |
Value |
| id |
Resource Id |
string |
ARM template resource definition
The diskEncryptionSets resource type can be deployed with operations that target:
For a list of changed properties in each API version, see change log.
To create a Microsoft.Compute/diskEncryptionSets resource, add the following JSON to your template.
{
"type": "Microsoft.Compute/diskEncryptionSets",
"apiVersion": "2020-05-01",
"name": "string",
"identity": {
"type": "string"
},
"location": "string",
"properties": {
"activeKey": {
"keyUrl": "string",
"sourceVault": {
"id": "string"
}
},
"encryptionType": "string"
},
"tags": {
"{customized property}": "string"
}
}
Property values
EncryptionSetIdentity
| Name |
Description |
Value |
| type |
The type of Managed Identity used by the DiskEncryptionSet. Only SystemAssigned is supported. |
'SystemAssigned' |
EncryptionSetProperties
| Name |
Description |
Value |
| activeKey |
The key vault key which is currently used by this disk encryption set. |
KeyVaultAndKeyReference |
| encryptionType |
The type of key used to encrypt the data of the disk. |
'EncryptionAtRestWithCustomerKey'
'EncryptionAtRestWithPlatformAndCustomerKeys'
'EncryptionAtRestWithPlatformKey' |
KeyVaultAndKeyReference
| Name |
Description |
Value |
| keyUrl |
Url pointing to a key or secret in KeyVault |
string (required) |
| sourceVault |
Resource id of the KeyVault containing the key or secret |
SourceVault (required) |
Microsoft.Compute/diskEncryptionSets
| Name |
Description |
Value |
| apiVersion |
The api version |
'2020-05-01' |
| identity |
The managed identity for the disk encryption set. It should be given permission on the key vault before it can be used to encrypt disks. |
EncryptionSetIdentity |
| location |
Resource location |
string (required) |
| name |
The resource name |
string (required) |
| properties |
|
EncryptionSetProperties |
| tags |
Resource tags |
Dictionary of tag names and values. See Tags in templates |
| type |
The resource type |
'Microsoft.Compute/diskEncryptionSets' |
SourceVault
| Name |
Description |
Value |
| id |
Resource Id |
string |
The diskEncryptionSets resource type can be deployed with operations that target:
For a list of changed properties in each API version, see change log.
To create a Microsoft.Compute/diskEncryptionSets resource, add the following Terraform to your template.
resource "azapi_resource" "symbolicname" {
type = "Microsoft.Compute/diskEncryptionSets@2020-05-01"
name = "string"
identity = {
type = "string"
}
location = "string"
tags = {
{customized property} = "string"
}
body = jsonencode({
properties = {
activeKey = {
keyUrl = "string"
sourceVault = {
id = "string"
}
}
encryptionType = "string"
}
})
}
Property values
EncryptionSetIdentity
| Name |
Description |
Value |
| type |
The type of Managed Identity used by the DiskEncryptionSet. Only SystemAssigned is supported. |
'SystemAssigned' |
EncryptionSetProperties
| Name |
Description |
Value |
| activeKey |
The key vault key which is currently used by this disk encryption set. |
KeyVaultAndKeyReference |
| encryptionType |
The type of key used to encrypt the data of the disk. |
'EncryptionAtRestWithCustomerKey'
'EncryptionAtRestWithPlatformAndCustomerKeys'
'EncryptionAtRestWithPlatformKey' |
KeyVaultAndKeyReference
| Name |
Description |
Value |
| keyUrl |
Url pointing to a key or secret in KeyVault |
string (required) |
| sourceVault |
Resource id of the KeyVault containing the key or secret |
SourceVault (required) |
Microsoft.Compute/diskEncryptionSets
| Name |
Description |
Value |
| identity |
The managed identity for the disk encryption set. It should be given permission on the key vault before it can be used to encrypt disks. |
EncryptionSetIdentity |
| location |
Resource location |
string (required) |
| name |
The resource name |
string (required) |
| properties |
|
EncryptionSetProperties |
| tags |
Resource tags |
Dictionary of tag names and values. |
| type |
The resource type |
"Microsoft.Compute/diskEncryptionSets@2020-05-01" |
SourceVault
| Name |
Description |
Value |
| id |
Resource Id |
string |