I have deployed 10 Azure VMS. All are in running state. I enabled a Backup Policy for all 10 VMs where the Azure will take backup for each VM at 11PM IST. Recently I enabled Disk Encryption for all VMs using the following cloudshell commands .
$KeyVault = Get-AzKeyVault -VaultName DevDiskEncryptionKV -ResourceGroupName abcdef
Set-AzVMDiskEncryptionExtension -ResourceGroupName abcdef -VMName DEV-VM-005 -DiskEncryptionKeyVaultUrl $KeyVault.VaultUri -DiskEncryptionKeyVaultId $keyVault.ResourceId.
All disks in VMs are encrypted. But Backup was failed for first 5 VMs (1 to 5) and Next 5 VMs (6 to 10) are fine. Why backup for first 5 VMs are failed. Getting an error code like this:
Error message: Disk exclusion is not supported for encrypted virtual machines.
Can anyone help with the above question?
2
Answers
As suggested on this previous thread, can you please run the following:
where vmname is one of the VM with a failing backup?
Before you start
You can back up and restore ADE encrypted VMs within the same subscription.
Azure Backup supports VMs encrypted using standalone keys. Any key that’s a part of a certificate used to encrypt a VM is not currently supported.
Azure Backup supports Cross Region Restore of encrypted Azure VMs to the Azure paired regions.