search

MicrosoftDocs / azure-docs

Open source documentation of Microsoft Azure
https://docs.microsoft.com/azure
Creative Commons Attribution 4.0 International
10.2k stars 21.34k forks source link

Gen2 machines support Azure Disk Encryption? #120835

Closed Absoblogginlutely closed 1 month ago

Absoblogginlutely commented 5 months ago

Per https://learn.microsoft.com/en-us/azure/virtual-machines/windows/disk-encryption-overview#supported-vms it states Gen2 machines support Azure Disk Encryption, but following through the tagged prerequisite script (that has issues due to changes in the way ServicePrincipals and apps are registered) gives an error that Gen 2 machines are not supported - 

 Set-AzVMDiskEncryptionExtension -ResourceGroupName $vm.ResourceGroupName -VMName $vm.Name -AadClientID $aadClientID -AadClientSecret $aadClientSecret -DiskEncryptionKeyVaultUrl $diskEncryptionKeyVaultUrl -DiskEncryptionKeyVaultId $keyVaultResourceId -VolumeType 'All';

Set-AzVMDiskEncryptionExtension : Azure Disk Encryption is not supported with Generation 2 Hypervisor.
ErrorCode: NotSupported
ErrorMessage: Azure Disk Encryption is not supported with Generation 2 Hypervisor.
ErrorTarget:
StatusCode: 409
ReasonPhrase:
OperationID : fa63aa57-2ef5-4f4e-b5bf-a843111c3316
At line:15 char:4
+    Set-AzVMDiskEncryptionExtension -ResourceGroupName $vm.ResourceGro ...
+    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : CloseError: (:) [Set-AzVMDiskEncryptionExtension], ComputeCloudException
    + FullyQualifiedErrorId : Microsoft.Azure.Commands.Compute.Extension.AzureDiskEncryption.SetAzureDiskEncryptionExtensionCommand

This also matches with the statement at https://learn.microsoft.com/en-us/training/modules/configure-bitlocker-disk-encryption-windows-iaas-virtual-machines/2-describe-azure#:~:text=Lsv2%2Dseries%20VMs.-,VM%20generation,Azure%20Disk%20Encryption%20isn%27t%20available%20on%20Generation%202%20VMs.,-Memory that states V2 machines are not supported.

Can you clarify and update the appropriate document please?

Document Details

Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

ManoharLakkoju-MSFT commented 5 months ago

@Absoblogginlutely Thanks for your feedback! We will investigate and update as appropriate.

SaibabaBalapur-MSFT commented 5 months ago

@msmbaldwin please review it.

SaibabaBalapur-MSFT commented 5 months ago

@Absoblogginlutely I'm going to assign this to the document author so they can take a look at it accordingly.

akashdubey-ms commented 1 month ago

Thanks for your contribution to our documentation

We are moving to a new user feedback system. As part of that effort, we are creating a content request in our backlog to address this gap and are closing this GitHub issue. The updated content will be published shortly.   Please continue to provide feedback about the documentation. We appreciate your contributions to our community.

please-close