Azure HDInsight enterprise security enhancements
Published date: May 19, 2020
Three new security feature improvements are available for Azure HDinsight.
Use customer-managed keys (CMK) with Azure KeyVault for data encryption at rest across different cluster types. For more information on how to enable this feature, read the documentation.
Enforce TLS 1.2+ when creating the clusters by choosing the min version of TLS to enable. Follow the steps in our documentation to set the TLS version.
Enable multifactor authentication (MFA) for your users accessing Apache Ambari in HDInsight clusters by using HDinsight ID Broker , now in preview. HDinsight ID Broker adds modern authentication support to the gateway and enables clients that support OAuth to authenticate to the cluster without providing a password. To enable HDinsight ID Broker and upgrade your custom client apps, review the steps in our documentation.