search

Azure-Samples / smartbulkcopy

High-Speed Bulk Copy tool to move data from one Azure SQL / SQL Server database to another. Smartly uses logical or physical partitions to maximize speed.
MIT License
61 stars 23 forks source link

Supporting VM Identity or Azure Authentication for Always Encrypted Database scenario #34

Open ericAbaka opened 2 years ago

ericAbaka commented 2 years ago

Currently migrating Azure SQL Databases to Azure SQL Managed Instances fro various reason, other technique are too slow to migrate a db.

But how can I access Always Encrypted data when only connection string are supported and cannot use the identity of the VM on whcih I'm running.

Or maybe the possibility to add an AppId / AppSecret in the config file to support that kind of scenario.

yorek commented 2 years ago

Hi ericAbaka. Are your keys stored in Key Vault? (I guess, but just asking to be sure)

ericAbaka commented 2 years ago

Yes they are

Get Outlook for iOShttps://aka.ms/o0ukef

From: Davide Mauri @.> Sent: Saturday, June 4, 2022 12:19:14 AM To: Azure-Samples/smartbulkcopy @.> Cc: Eric Girard @.>; Author @.> Subject: Re: [Azure-Samples/smartbulkcopy] Supporting VM Identity or Azure Authentication for Always Encrypted Database scenario (Issue #34)

Hi ericAbaka. Are your keys stored in Key Vault? (I guess, but just asking to be sure)

— Reply to this email directly, view it on GitHubhttps://github.com/Azure-Samples/smartbulkcopy/issues/34#issuecomment-1146407804, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AZNXHBKJAUZCXHKQ5S2POLLVNKAGFANCNFSM5XRKGEHQ. You are receiving this because you authored the thread.Message ID: @.***>

yorek commented 2 years ago

Great. I'm not super exper with KyeVault, but who you would access a Key vault using an identity that is not the one of the VM or the container? Do you have any doc pointers on that? Thanks!