terraform-modules icon indicating copy to clipboard operation
terraform-modules copied to clipboard
verified publisher icon XenitAB

Enable node encryption for all AKS nodes

Open phillebaba opened this issue 3 years ago • 3 comments

This change will force all nodes to enable encryption at rest. Two current issues with enabling this. One is that it will require node recreation, the other is that it seems like the feature needs to be enabled per subscription.

More info can be found here. https://docs.microsoft.com/en-us/azure/aks/enable-host-encryption

phillebaba avatar Dec 14 '21 14:12 phillebaba

@simongottschlag @NissesSenap @jimgus

Considering to just close this because we have moved over to ephemeral nodes. We will never have any data at rest right?

phillebaba avatar Apr 23 '22 09:04 phillebaba

Sounds reasonable

nissessenap avatar Apr 23 '22 09:04 nissessenap

@phillebaba data will be stored on the nodes the VMs are running and I think it would we good to have the facts about how it's handled before closing.

simongottschlag avatar Apr 23 '22 17:04 simongottschlag