# Create a new encrypted windows vm from gallery image.

Aravind Thoram 提供
上次更新日期: 2015/11/10

This template creates a new encrypted windows vm using the server 2k12 gallery image.

此 Azure Resource Manager (ARM) 範本是由社群成員 (而非 Microsoft) 建立。每個 ARM 範本都是由其擁有者 (而非 Microsoft) 依據授權合約授權給您。Microsoft 並不負責社群成員所提供和授權的 ARM 範本,而不會為了安全性、相容性或效能進行篩選。社群 ARM 範本並未依據任何 Microsoft 支援方案或服務提供支援,而且會在沒有任何擔保的情況下依現況提供。

參數

參數名稱 說明
vmName Name of the virtual machine
adminUsername Admin user name for the virtual machine
adminPassword Admin user password for virtual machine
newStorageAccountName Storage account to store os vhd
vmStorageContainerName Name of the storage account container to store os vhd
vmSize Size of VM
virtualNetworkName Name of VNET to which the VM NIC belongs to
subnetName Name of Subnet to which the VM NIC belongs to
aadClientID Client ID of AAD app which has permissions to KeyVault
aadClientSecret Client Secret of AAD app which has permissions to KeyVault
keyVaultName Name of the KeyVault to place the volume encryption key
keyVaultResourceGroup Resource group of the KeyVault
useExistingKek Select kek if the secret should be encrypted with a key encryption key and pass explicit keyEncryptionKeyURL. For nokek, you can keep keyEncryptionKeyURL empty.
keyEncryptionKeyURL URL of the KeyEncryptionKey used to encrypt the volume encryption key

使用範本

PowerShell

New-AzureRmResourceGroupDeployment -Name <deployment-name> -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-encrypt-create-new-vm-gallery-image/azuredeploy.json
安裝和設定 Azure PowerShell

命令列

azure config mode arm
azure group deployment create <my-resource-group> <my-deployment-name> --template-uri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/201-encrypt-create-new-vm-gallery-image/azuredeploy.json
安裝和設定 Azure 跨平台命令列介面