Create two configurations for the interactive serial console when customers are configuring their VM settings

[angarg05]

Preconditions

• No need to upgrade Python SDK or the Python SDK is ready.

Related command

No response

Resource Provider

Confidential Virtual Machines (CVM)

Description of Feature or Work Requested

Any traffic on the serial console is accessible to the Azure Host in clear text. This includes any secrets logged during boot diagnostics, the username and password that a customer may enter to log into their VM, and any traffic post login.

Currently the serial console is disabled by default but can be re-enabled by Azure operators without customer knowledge or consent. Customers can add a check for the disabled state of the serial console in a custom SKR policy. This requires work and extra cost on their behalf.

Core OS has enabled 3 configurable settings for the interactive serial console. These settings will be chosen by the customer when configuring their VM from the CLI, and hence we need CLI changes to support these new configurations,

Minimum API Version Required

N/A

Swagger PR link / SDK link

PR from Core OS team - link

Request Example

No response

Target Date

2026-07-31

PM Contact

ananyagarg

Engineer Contact

gaswamy

Additional context

PM spec - here

[yonzhan]

Thank you for opening this issue, we will look into it.

[github-actions]

This issue is related to security. Please pay attention.

Powered by issue-sentinel

[yanzhudd]

Hi @angarg05
it seems that the swagger link you shared above is invalid.

could you please provide a valid link?

[angarg05]

Hi there, yes you need to request access for it from the owner. I can share their alias on Teams, or if you can share your alias, I will request access to it

[yanzhudd]

Hi @angarg05
Could you please help request the access for the aliases zhuyan and v-williamng ?
Thank you!

[angarg05]

Hi there, sorry for the delay. You need to be a part of a security group in order to see the PR. I will share that in a Teams chat.