Adding and Encrypting a Storage Volume

1 hour
  • 3 Learning Objectives

About this Hands-on Lab

In this lab, we’ll walk through adding and configuring a storage volume to a Linux server and then encrypting the volume. We’ll start by creating an Azure Key Vault where we can store encryption keys, and we’ll walk through how to encrypt existing disks and use our vault to encrypt disks on new Virtual Machines.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Create a Key Vault and Key for Self-Managed Encryption

Learners will be shown how to create a vault in Azure Key Vault and then generate an encryption key for use with Azure’s encryption technologies.

Encrypt a Disk Volume Using Azure Disk Encryption (ADE)

Learners will learn how to encrypt a disk using Azure Disk Encryption to secure data at the software level.

Note: Use the same location as your lab provided Resource Group when setting up the Azure Cloud Bash CLI.

Use a Customer Managed Key with Azure Server Side Encryption

Learners will learn how to use a customer managed key rather the the standard Azure platform managed key to ensure they can meet their organization’s compliance standards.

Additional Resources

Log in to the Azure Portal using the credentials provided on the lab instructions page.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?