DRAG DROP Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure Subscription named Sub1. Sub1 contains an Azure virtual machine named VM1 that runs Windows Server 2016. You need to encrypt VM1 disks by using Azure Disk Encryption. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. 
Yeah, this follows the Microsoft docs order. First set up the key vault, then configure access policies so the VM can actually use it, finally run the Set-AzureRmVmDiskEncryptionExtension to trigger encryption. Seen this sequence in similar exam questions, pretty sure it's what they expect. Anyone see another combo work?
- Create an Azure key vault
- Configure access policies for the Azure key vault
- Run Set-AzureRmVmDiskEncryptionExtension
Yeah, the order should be create key vault, then configure access policies, then run Set-AzureRmVmDiskEncryptionExtension. That's the normal flow unless they're asking for BYOK but I don't see that here. Open if anyone disagrees though.
