Skip to main content

GA: Bring our own keys (BYOK) on Ephemeral OS Disk

Published date: October 25, 2023

AKS nodes support for using custom managed keys for encryption of both the OS and data disks of  clusters is now generally available.

Azure storage encrypts all data in a storage account at rest. By default, data is encrypted with Microsoft-managed keys.

For more control over encryption keys, you can supply your own managed keys to use for encryption at rest for both the OS and data disks for your AKS clusters.

Learn more.

  • Azure Kubernetes Service (AKS)
  • Features
  • Security