You have an Azure virtual machine named VM1.
You plan to encrypt VM1 by using Azure Disk Encryption.
Which Azure resource must you create first?

Question

You have an Azure virtual machine named VM1. You plan to encrypt VM1 by using Azure Disk Encryption. Which Azure resource must you create first?

Accepted Answer

Correct answer: B. B. an Azure Key Vault — The correct answer is B, as an Azure Key Vault is essential for managing encryption keys and secrets used in Azure Disk Encryption. The other options do not provide the necessary key management capabilities; an Azure Storage account is for storage, an Azure Information Protection policy is for data classification, and an Encryption key itself cannot be created without a Key Vault.

Microsoft Azure Fundamentals — Question 447

Answer options

Correct answer: B

Explanation