User Profile
AdamKolak-6034
Copper Contributor
Joined Oct 17, 2019
User Widgets
Recent Discussions
ASC Regulatory Compliance policy definition
Hello, can anyone give me an advice, where I can get information about technical description what really does Regulatory Compliance policy definition? (I do mean what do they really check in which scope - subscription I suppose etc.). I was not able to find policy description e.g. for ISO27001 in documentation and FAQ. Thx anyone for reply where to get right information. AdamSolved2.8KViews0likes3CommentsAzure VM EncryptionAtRest: StorageServiceEncryption BYOK vs AzureDiskEncryption
I would like to ask anyone about target of change according to managed disk encryption within IaaS VMs at Azure using BYOK methods (see choices bellow). Does anyone know whether ADE is still futured functionality, or MS aims to use SSE BYOK and ADE will be deprecated in future?? (Azure portal offer SSE BYOK by default) There are more choices you have for example: a) AzureDiskEncryption using BYOK Documentation: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/disk-encryption-overview Support for ARM in all API versions (for example the last one 2019-12-01): https://docs.microsoft.com/en-us/azure/templates/microsoft.compute/2019-03-01/virtualmachines (you can use alternativelly also KEK functionality to encrypt BEK keys) b) StorageServiceEncryption using BYOK since 04/2020 GA: https://www.google.com/url?q=https://azure.microsoft.com/en-us/updates/serverside-encryption-with-customermanaged-keys-is-now-available/&sa=D&source=calendar&ust=1602332435076000&usg=AOvVaw0QcAQ7YzN4aVfHNeXSpbCB Documentation: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/disk-encryption Support for ARM to API version since 2019-07-01 (so it is in 2019-07-01 and 2019-12-01): https://docs.microsoft.com/en-us/azure/templates/microsoft.compute/2019-07-01/virtualmachines611Views0likes0CommentsRe: Azure Backup / Recovery services Vault which Zone in LRS deployment
Bryan HaslipYou aim exactely to our next decisions. Once we properly understand logic, we can make some other decisions as using GRS etc. We deploy service in West Europe Region which consists of 3 zones and I am not sure in which zone is service deployed. So I need to answer myself what happen in case of fail zone1, zone2 or zone3. Paas Zone redundant services are OK, but what about VM, VMs in availability groups etc (Scale sets are OK as per design). Thx for more information provided.1.3KViews0likes0CommentsAzure Backup / Recovery services Vault which Zone in LRS deployment
Hello Guys, please can anybody give me an answer in which zone is RecoveryServicesVault depoyed in case of LRS? Is there some algorithm about decision? (I was thinking about first resources used to be backed up, but you create RecoveryServicesVault in time when you do not configure any resources ... so it will not be such case). Also can you give me an advice where I can get information about zone in which it is deployed? Thank you I have not found answer searching in official docs so far. Adam1.3KViews0likes2CommentsRe: ASC Regulatory Compliance policy definition
melvynadam sorry, but your answer has not reach my goal. E.G. look at ISO27001, it is composed from a lot of policies. Where I get information what exactelly does policies connected with this Initiative assigments? ... I know that such ACS default policy assigment is scoped and enabled at the subscription level. But my point is where I got Policy definition for particular parts of this defaul ACS policy assigment. E.G. "A12.2.1. Controls against malware" and its one of assessments: "Install endpoint protection solution on virtual machines" Where I can find such description/mapping what this assessment really technically does? (mostly probably, it checks VMs in particular subscription ... maybee windows, maybee linux ... etc.) Hope I cleared what I seek for. BR Adam2.7KViews0likes1Comment
Recent Blog Articles
No content to show