What is VSAN encryption and how does it work?
vSAN Encryption – Native to vSAN, vSAN Encryption provides data-at-rest and data-in-transit security at the cluster level and supports all vSAN features, including space efficiency features such as deduplication and compression. Data-in-transit encryption delivers over-the-wire encryption for data between vSAN nodes.
What's new in VSAN 7 1?
With vSAN 7.0 update 1, we can now choose between Compression or Compression and Deduplication as a space efficiency option on the vSAN cluster. This reduces the failure domain and increases throughput due to how the vSAN architecture works when deduplicating data.
Does VSAN 7 U2 support data-in-transit encryption?
Data-in-Transit encryption, as well as the space reclamation technique known as UNMAP, are also supported. A snapshotting mechanism for point-in-time recovery of files is available through API. Finally, vSAN 7 U2 optimizes some of the metadata handling and data path for more efficient transactions, especially with small files.
Which vSphere features are supported by VMware VSAN encryption?
All vSphere features including VMware vSphere vMotion®, VMware vSphere Distributed Resource Scheduler™ (DRS), VMware vSphere High Availability (HA), and VMware vSphere Replication™ are supported. A Key Management Server (KMS) is required to enable and use vSAN encryption.