Add a new 'keyVaultKeyUri' param to azuredeploy.json. It creates a new 'encryption' variable, that is passes into workspace/azuredeploy.json, which then applies it to the newly created Synapse workspace. The default empty string for 'keyVaultKeyUri' results in an empty dict for 'encryption', which leaves things unchanged from how they are now. Otherwise, the customer-managed key (CMK) will be applied.
Add a new 'keyVaultKeyUri' param to azuredeploy.json. It creates a new 'encryption' variable, that is passes into workspace/azuredeploy.json, which then applies it to the newly created Synapse workspace. The default empty string for 'keyVaultKeyUri' results in an empty dict for 'encryption', which leaves things unchanged from how they are now. Otherwise, the customer-managed key (CMK) will be applied.