Azure HDInsight enterprise security enhancements
Share
Services
Three new security feature improvements are available for Azure HDinsight.
Use customer-managed keys (CMK) with Azure KeyVault for data encryption at rest across different cluster types. For more information on how to enable this feature, read the [documentation](https://docs.microsoft.com/en-us/azure/hdinsight/disk-encryption).
Enforce TLS 1.2+ when creating the clusters by choosing the min version of TLS to enable. Follow the steps in our [documentation](https://docs.microsoft.com/en-us/azure/hdinsight/transport-layer-security) to set the TLS version.
Enable multifactor authentication (MFA) for your users accessing Apache Ambari in HDInsight clusters by using HDinsight ID Broker, now in preview. HDinsight ID Broker adds modern authentication support to the gateway and enables clients that support OAuth to authenticate to the cluster without providing a password. To enable HDinsight ID Broker and upgrade your custom client apps, review the steps in our [documentation](https://docs.microsoft.com/en-us/azure/hdinsight/domain-joined/identity-broker).
[Learn more about HDinsight ID Broker](https://docs.microsoft.com/en-us/azure/hdinsight/domain-joined/identity-broker)
[Learn more about TLS](https://docs.microsoft.com/en-us/azure/hdinsight/transport-layer-security)
[Learn more about key disk encryption](https://docs.microsoft.com/en-us/azure/hdinsight/disk-encryption)
* HDInsight
* Features
* Security
* [ HDInsight](https://azure.microsoft.com/en-gb/products/hdinsight/)
What else is happening at Microsoft Azure?
Read update
Services
Share
Read update
Services
Share
We’re retiring Azure Time Series Insights on 7 July 2024 – transition to Azure Data Explorer
May 31st, 2024
Services
Share