Share via


Encryption Class

Definition

The encryption settings on the storage account.

[System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Storage.Models.EncryptionTypeConverter))]
public class Encryption : Microsoft.Azure.PowerShell.Cmdlets.Storage.Models.IEncryption
[<System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Storage.Models.EncryptionTypeConverter))>]
type Encryption = class
    interface IEncryption
    interface IJsonSerializable
Public Class Encryption
Implements IEncryption
Inheritance
Encryption
Attributes
Implements

Constructors

Encryption()

Creates an new Encryption instance.

Properties

BlobEnabled

A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.

BlobKeyType

Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.

BlobLastEnabledTime

Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.

FileEnabled

A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.

FileKeyType

Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.

FileLastEnabledTime

Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.

IdentityEncryptionFederatedIdentityClientId

ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.

IdentityEncryptionUserAssignedIdentity

Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.

KeySource

The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault

KeyVaultPropertyCurrentVersionedKeyExpirationTimestamp

This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.

KeyVaultPropertyCurrentVersionedKeyIdentifier

The object identifier of the current versioned Key Vault Key in use.

KeyVaultPropertyKeyName

The name of KeyVault key.

KeyVaultPropertyKeyVaultUri

The Uri of KeyVault.

KeyVaultPropertyKeyVersion

The version of KeyVault key.

KeyVaultPropertyLastKeyRotationTimestamp

Timestamp of last rotation of the Key Vault Key.

QueueEnabled

A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.

QueueKeyType

Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.

QueueLastEnabledTime

Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.

RequireInfrastructureEncryption

A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.

TableEnabled

A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.

TableKeyType

Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.

TableLastEnabledTime

Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.

Methods

DeserializeFromDictionary(IDictionary)

Deserializes a IDictionary into an instance of Encryption.

DeserializeFromPSObject(PSObject)

Deserializes a PSObject into an instance of Encryption.

FromJson(JsonNode)

Deserializes a JsonNode into an instance of Microsoft.Azure.PowerShell.Cmdlets.Storage.Models.IEncryption.

FromJsonString(String)

Creates a new instance of Encryption, deserializing the content from a json string.

ToJson(JsonObject, SerializationMode)

Serializes this instance of Encryption into a JsonNode.

ToJsonString()

Serializes this instance to a json string.

ToString()

Applies to