A couple of thoughts:
1. Does the whole Windows server need to be encrypted? Can't you just use TrueCrypt to create an encrypted volume inside windows, then mount it as a drive letter and store you sensitive data there? 2. If the whole server does indeed need to be encrypted, you could set up another server (could be virtual), use TrueCrypt to create an encrypted volume, then export that disk volume via NFS. In ESX, mount that NFS disk and create your protected machine there. Obviously, you'd need to insure that the NFS server virtual boots first, and that the TrueCrypt volume gets mounted before booting the protected windows server. From: [email protected] [mailto:[email protected]] On Behalf Of Jimmy Tran Sent: Thursday, January 16, 2014 9:48 AM To: [email protected] Subject: [NTSysADM] encrypting Server 2008 R2 virtual disk I have a client who needs to comply to HIPPA requirements and encrypt their data. The windows server 2008 r2 is a guest on ESXi 5.5. I looked at bit locker and although vmware doesn't support it, it can still be done. The data is currently planned to reside on the local datastore. Encrypting the entire data store would be ideal but I'm not aware of any tools to do this. Does anyone have any recommendations? Thanks, Jimmy
