AKS does not use disk encryption set
Description
Disk encryption is a security measure that encrypts the data on a disk to protect it from unauthorized access or tampering. When disk encryption is enabled for AKS, it encrypts the data on the disks that are used by the nodes in your cluster. This can help to protect your data from being accessed or modified by unauthorized users, even if the disks are physically stolen or the data is accessed from an unauthorized location.
Fix - Buildtime
Terraform
- Resource: azurerm_kubernetes_cluster
- Argument: disk_encryption_set_id
resource "azurerm_kubernetes_cluster" "example" {
...
+ disk_encryption_set_id = "someId"
}