For detailed steps, see Sign up for Azure as an organization.Ĭustomer Key requires two keys for each data encryption policy (DEP). For example, using your work or school account that has global administrator privileges in your organization. Azure Key Vault keys can only be authorized for applications in the same Azure Active Directory (Microsoft Azure Active Directory) tenant, you must create the new subscriptions using the same Azure AD tenant used with your organization where the DEPs will be assigned. As a best practice, Microsoft recommends that you create new Azure subscriptions for use with Customer Key. Create two new Azure subscriptionsĬustomer Key requires two Azure subscriptions. You'll need to complete these steps for all DEPs you use with Customer Key. Obtain the URI for each Azure Key Vault keyĬomplete tasks in Azure Key Vault and Microsoft FastTrack for Customer KeyĬomplete these tasks in Azure Key Vault. Make sure soft delete is enabled on your key vaultsĪdd a key to each key vault either by creating or importing a key This registration process will take five business days to complete.Ĭontact the corresponding Microsoft alias to proceed with the processĬreate a premium Azure Key Vault in each subscription Register Azure subscriptions to use a mandatory retention period Submit a request to activate Customer Key for Office 365 For best results, use version 4.4.0 or later of Azure PowerShell. You'll complete most of these tasks by remotely connecting to Azure PowerShell. The rest of this article provides detailed instructions for each task, or links out to more information for each step in the process. To set up Customer Key, complete these tasks in the listed order.
To provide feedback on Customer Key, including the documentation, send your ideas, suggestions, and perspectives to Overview of steps to set up Customer Key
If you need more support beyond the documentation, contact Microsoft Consulting Services (MCS), Premier Field Engineering (PFE), or a Microsoft partner for assistance.
Also, become familiar with the terms used in Azure, for example, Azure AD tenant. To understand the concepts and procedures in this article, review the Azure Key Vault documentation.
Microsoft 365 Security and Compliance for FLWĮxisting Office 365 Advanced Compliance licenses will continue to be supported.Microsoft 365 E5 Information Protection & Governance SKUs.Valid M365/O365 licenses that offer M365 Customer Key are:
0 kommentar(er)
