Loading controls...
Control: Storage account containing VHD OS disk not encrypted with CMK
Description
This policy identifies Azure Storage account containing VHD OS disk which are not encrypted with CMK. VHD's attached to Virtual Machines are stored in Azure storage. By default Azure Storage account is encrypted using Microsoft Managed Keys. It is recommended to use Customer Managed Keys to encrypt data in Azure Storage accounts for better control on the data.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.storage_account_containing_vhd_os_disk_cmk_encryptedSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.storage_account_containing_vhd_os_disk_cmk_encrypted --shareSQL
This control uses a named query:
storage_account_containing_vhd_os_disk_cmk_encrypted