Skip to content

aravindthoram/DiskEncryption

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

102 Commits
CreateNewEncryptedWindowsVM-AADClientSecret-WithKek.json
CreateNewEncryptedWindowsVM-AADClientSecret-WithKek.json
 
 
CreateNewEncryptedWindowsVM-AADClientSecret.json
CreateNewEncryptedWindowsVM-AADClientSecret.json
 
 
EnableEncryptionOnRunningLinuxVM-AADClientSecret-WithKek.json
EnableEncryptionOnRunningLinuxVM-AADClientSecret-WithKek.json
 
 
EnableEncryptionOnRunningLinuxVM-AADClientSecret.json
EnableEncryptionOnRunningLinuxVM-AADClientSecret.json
 
 
EnableEncryptionOnRunningLinuxVM-Format-AADClientSecret-WithKek.json
EnableEncryptionOnRunningLinuxVM-Format-AADClientSecret-WithKek.json
 
 
EnableEncryptionOnRunningLinuxVM-Format-AADClientSecret.json
EnableEncryptionOnRunningLinuxVM-Format-AADClientSecret.json
 
 
EnableEncryptionOnRunningWindowsVM-AADClientCert-WithKek.json
EnableEncryptionOnRunningWindowsVM-AADClientCert-WithKek.json
 
 
EnableEncryptionOnRunningWindowsVM-AADClientCert.json
EnableEncryptionOnRunningWindowsVM-AADClientCert.json
 
 
EnableEncryptionOnRunningWindowsVM-AADClientSecret-WithKek.json
EnableEncryptionOnRunningWindowsVM-AADClientSecret-WithKek.json
 
 
EnableEncryptionOnRunningWindowsVM-AADClientSecret.json
EnableEncryptionOnRunningWindowsVM-AADClientSecret.json
 
 
EnableEncryptionOnRunningWindowsVM.json
EnableEncryptionOnRunningWindowsVM.json
 
 
README.md
README.md
 
 
azureDeployEncryptedWindowsVM.json
azureDeployEncryptedWindowsVM.json
 
 
azureDeployEncryptedWindowsVMNoKek.json
azureDeployEncryptedWindowsVMNoKek.json
 
 
azureDeployPrereqs.json
azureDeployPrereqs.json
 
 

Repository files navigation

Create Encrypted VM's on Azure

Run this pre-requisite template if you are setting up storage account, vnet and subnet for the first time!
Scenario 1: This template creates and deploys an Encrypted Windows or Linux VM on Azure!
Bitlocker key is encrypted with Kek.

Scenario 2: This template creates and deploys an Encrypted Windows or Linux VM on Azure!
Bitlocker key in clear (no Kek).

Scenario 3: This template enables encryption on a running Linux vm using AAD client secret


Scenario 4: This template enables encryption on a running Linux vm using AAD client secret and KeyEncryptionKey


Scenario 5: This template enables encryption on a running Linux vm using AAD client secret, this will format the disk directly instead of encrypting the existed data. Parameter of the diskFormatQuery should be like this: [{"scsi":"6:0:0:1","name":"azuredisk"},{"scsi":"6:0:0:1","name":"azuredisk2"}] or [{"dev_path":"/dev/sdx","name":"azuredisk"}], the scsi means the disk scsi number, the name means the mount point name.And you can specify the file system used for the device like this: [{"dev_path":"/dev/sdx","name":"azuredisk","file_system":"ext4"}]


Scenario 6: This template enables encryption on a running Linux vm using AAD client secret and KeyEncryptionKey, this will format the disk directly instead of encrypting the existed data. Parameter of the diskFormatQuery should be like this: [{"scsi":"6:0:0:1","name":"azuredisk"},{"scsi":"6:0:0:1","name":"azuredisk2"}] or [{"dev_path":"/dev/sdx","name":"azuredisk"}], the scsi means the disk scsi number, the name means the mount point name. And you can specify the file system used for the device like this: [{"dev_path":"/dev/sdx","name":"azuredisk","file_system":"ext4"}]



Scenario 7: This template enables encryption on a running windows vm using AAD client secret


Scenario 8: This template enables encryption on a running windows vm using AAD client secret and KeyEncryptionKey


Scenario 9: This template enables encryption on a running windows vm using AAD client cert thumbprint


Scenario 10: This template enables encryption on a running windows vm using AAD client cert thumbprint and KeyEncryptionKey


Scenario 11: This template creates a new encrypted windows vm using the server 2k12 gallery image! Using AAD client secret


Scenario 12: This template creates a new encrypted windows vm using the server 2k12 gallery image! Using AAD client secret and KeyEncryptionKey

Microsoft Online Services Privacy statement - http://www.microsoft.com/privacystatement/en-us/OnlineServices/Default.aspx

About

Templates for AzureDiskEncryption

Resources

Readme
Activity

Stars

2 stars

Watchers

5 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published