ASR failover fails for Bitlocker encrypted VM
There is an Azure VM encrypted disk with Bitlocker in North Europe. Everything has replicated well in West Europe. While doing Test Failover, getting below error.
Failover Error: ID28031 Error Message: Virtual machine XXX-AZ-WEB01-test' could not be created under the resource group 'XXXX-Destination-RG'. Azure error message: 'Key Vault https://XXX-keyvault-ne.vault.azure.net/keys/Bitlocker/XXXX either has not been enabled for Volume Encryption or the vault id provided does not match /subscriptions/XXXX-XX-XXXX-XXX-XXXX/resourceGroups/XXX-Destination-RG/providers/Microsoft.KeyVault/vaults/XXX-KEYVAULT-WE's true resource id. (Provisioning failed)'.
Things are already in place what is showing in error.
Volume encryption has enabled in both source and destination Key vault.
The user has assigned all the permission as per this doc.
Thanks in advance.
The mistake was that destination KeyVault was created and keys were imported manually. The destination Keyvault must be created by the script provided below.
Once I created the destination KeyVault by script, everything goes smoothly.
- How to Delete Azure FileShare Snapshots Along with Persistent Volume in Azure Kubernetes Services?
- Azure storage replication vs Azure Backup
- Unable to delete Recovery Service Vault in Azure
- Unable to delete the Restore Point Collection resource in Azure Portal
- unable to add azure fileshare to Recovery service vault backup policy through az cli command
- PowerShell Azure Command Get-AzRecoveryServicesVault not returning anything
- Azure VM Backup Taking Longer Than Expected
- UserErrorMissingPermissionsOnSecretStore: Missing permissions to read the Key vault secrets
- Azure Storage Operational Backup Creating new version after Restore
- Azure Blob Operational Backup
- Azure Backup Center - SQL in Azure VM - Backup Alerts for monitoring
- Restore-AzRecoveryServicesBackupItem cmdlet to Restore As Files
- Azure VM backup
- Unable to delete restore point in Azure backup
- Resume Azure VM backup using powershell script after disabling backup
- Powershell script to automate azure linux VM backup and restore from azure devops pipeline
- Terraform Azure Configure VM Backup Policy Fails
- Azure Vm Backup - change from OS Disk only to all disks
- Azure Virtual Machine BackUp Rest API
- Creating Azure Recovery Service Vault - Python SDK - bad request
- Query whether Azure App Services has backup setup
- Azure Fileshare - Restore snapshot without backup service
- Is there any way to configure Azure Backup alert using terraform?
- how to check if back up is enabled on azure virtual machine using powershell
- Azure recovery service vault: Disk exclusion is not supported for encrypted virtual machines
- Can we exclude a specific file system in File-system consistent snapshot backup in Azure
- Azure VM backup/automation not working after restore
- Where are DPM backups stored in Azure?
- Azure Site Recovery + MySQL Server on Windows
- Azure Backup. Wait Only Until Snapshot Is Taken, Not Until It's Transferred to Vault