HIGH
Source
Trivy
ID
AVD-AZU-0038

Enable disk encryption on managed disk

Manage disks should be encrypted at rest. When specifying the encryption_settings block, the enabled attribute should be set to true.

Impact

Data could be read if compromised

Follow the appropriate remediation steps below to resolve the issue.

Enable encryption on managed disks

1
2
3
4
5
 resource "azurerm_managed_disk" "good_example" {
 	encryption_settings {
 		enabled = true
 	}
 }