KranthiPakala-MSFT
commented
2 years ago Thanks for the feedback! We have assigned the issue to the content author to further review this and provide an update as appropriate.
Closed lucabovo closed 4 months ago
KranthiPakala-MSFT
commented
2 years ago Thanks for the feedback! We have assigned the issue to the content author to further review this and provide an update as appropriate.
lucabovo
commented
2 years ago Thank you so much! I look forward to your reply.
lucabovo
commented
2 years ago Hi @meenalsri
Are there any updates about this request?
Thanks a lot, Luca
lucabovo
commented
2 years ago Hi @meenalsri @PRMerger17 @KranthiPakala-MSFT @JJ
Any news about this request?
Thanks for your cooperation, Luca
bandersmsft
commented
4 months ago Thanks for your dedication to our documentation. Unfortunately, at this time we have been unable to review your issue in a timely manner and we sincerely apologize for the delayed response. We are closing this issue for now, but if you feel that it's still a concern, please respond and let us know. If you determine another possible update to our documentation, please don't hesitate to reach out again. #please-close
Good morning, I've just deployed a Synapse Workspace with double encryption managed with a customer-managed key (CMK), then a dedicated SQL Pool.
In this article I noticed that "Encryption can be enabled or disabled for individual dedicated SQL Pools. Each dedicated pool is not enabled for encryption by default."
First question: where do I have to enable the encryption for the dedicated SQL Pool?
This article also states that "SQL Transparent Data Encryption (TDE) is available for dedicated SQL Pools in workspaces NOT enabled for double encryption. In this type of workspace, a service-managed key is used to provide double encryption for the data in the dedicated SQL pools. TDE with the service-managed key can be enabled or disabled for individual dedicated SQL pools."
Second question/deduction: am I right if I've understood that "Transparent Data Encryption" is the option needed to enable encryption and it acts in a different way, following the Synapse Workspace configuration (if configured double encryption -> TDE does use the CMK; if NOT configured double encryption -> TDE does use a service-managed key)? I tried to enable this option (TDE) in a dedicated SQL Pool belonging to a Synapse Workspace with double encryption managed and after a few minutes I received an error message (unable to apply TDE), but waiting longer the procedure ended with TDE Encryption status = Encrypted...
Third question: can you please detail what are the benefits and services/components affected by double encryption in a Synapse Workspace?
Anyway, where can I verify if encryption is enabled and fully working on a specific dedicated SQL Pool?
Thanks in advance for your kind reply. Luca Bovo - beanTech
Document Details
⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.