Hi All,
I have few questions.Please someone help me on this regard.
- 1) Before enabling encryption,we will need to setup/integrate the KMS server with vcenter server.After enabling the vSAN Encryption at Rest or In Transit from the VSAN service level, we can utilize the VSAN encryption on the complete VSAN data store ?. Like VM encryption policy,can we use VSAN encryption only to the selected VSAN policies? For example 5 VSAN policies with encryption and 5 policies without VSAN encryption.
If that is possible(5 VSAN policies with encryption and 5 policies without VSAN encryption),will there be any impact on the current PROD VM?(after enabling VSAN Encryption at Rest or In Transit from the VSAN service level)
2)Can we enable VSAN encryption on the new VSAN policy level(example – VSAN GOLD POLICY) without enabling VSAN encryption in the core services level ? It will not work right?
3) VM Encryption method is only for VMs and cannot use the same VM Encryption policy for VSAN file services.