| Source | Azure Portal | |||||||||||||||
| Display name | [Preview]: Azure IoT Hub should use customer-managed key to encrypt data at rest | |||||||||||||||
| Id | 2d7e144b-159c-44fc-95c1-ac3dbf5e6e54 | |||||||||||||||
| Version | 1.0.0-preview Details on versioning |
|||||||||||||||
| Category | Internet of Things Microsoft Learn |
|||||||||||||||
| Description | Encryption of data at rest in IoT Hub with customer-managed key adds a second layer of encryption on top of the default service-managed keys, enables customer control of keys, custom rotation policies, and ability to manage access to data through key access control. Customer-managed keys must be configured during creation of IoT Hub. For more information on how to configure customer-managed keys, see https://aka.ms/iotcmk. | |||||||||||||||
| Mode | Indexed | |||||||||||||||
| Type | BuiltIn | |||||||||||||||
| Preview | True | |||||||||||||||
| Deprecated | False | |||||||||||||||
| Effect | Default Audit Allowed Audit, Deny, Disabled |
|||||||||||||||
| RBAC role(s) | none | |||||||||||||||
| Rule aliases | IF (2)
|
|||||||||||||||
| Rule resource types | IF (1) Microsoft.Devices/IotHubs |
|||||||||||||||
| Compliance | Not a Compliance control | |||||||||||||||
| Initiatives usage | none | |||||||||||||||
| History |
|
|||||||||||||||
| JSON compare | n/a | |||||||||||||||
| JSON |
|