Azure VM backup failing due to Disk Encryption

SrivatsavaT
April 25, 2023
286 views
0 votes
2 Answers

I have deployed 10 Azure VMS. All are in running state. I enabled a Backup Policy for all 10 VMs where the Azure will take backup for each VM at 11PM IST. Recently I enabled Disk Encryption for all VMs using the following cloudshell commands .

$KeyVault = Get-AzKeyVault -VaultName DevDiskEncryptionKV -ResourceGroupName abcdef
Set-AzVMDiskEncryptionExtension -ResourceGroupName abcdef -VMName DEV-VM-005 -DiskEncryptionKeyVaultUrl $KeyVault.VaultUri -DiskEncryptionKeyVaultId $keyVault.ResourceId.

All disks in VMs are encrypted. But Backup was failed for first 5 VMs (1 to 5) and Next 5 VMs (6 to 10) are fine. Why backup for first 5 VMs are failed. Getting an error code like this:
Error message: Disk exclusion is not supported for encrypted virtual machines.

Can anyone help with the above question?

Tags: azure disk

Answers

- NicoMarino
- April 25, 2023 at 3:36 pm
- 0 votes
0
As suggested on this previous thread, can you please run the following:
```
az backup protection update-for-vm --vault-name {vaultname} --resource-group {resourcegroup} -c {vmname} -i {vmname} --backup-management-type AzureIaasVM --disk-list-setting resetexclusionsettings
```
where vmname is one of the VM with a failing backup?
Login or Signup to reply.

- hocine699
- April 27, 2023 at 10:15 am
- 0 votes
0
Before you start
```
Review below limitations and supported configurations:
```
You can back up and restore ADE encrypted VMs within the same subscription.
Azure Backup supports VMs encrypted using standalone keys. Any key that’s a part of a certificate used to encrypt a VM is not currently supported.

Azure Backup supports Cross Region Restore of encrypted Azure VMs to the Azure paired regions.
Login or Signup to reply.

Please signup or login to give your own answer.

Click here to cancel reply.