search

hashicorp / terraform-provider-azurerm

Terraform provider for Azure Resource Manager
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs
Mozilla Public License 2.0
4.6k stars 4.64k forks source link

Support for MSSQL Managed Instance - Transparent data encryption #14567

Closed Marcus-James-Adams closed 1 year ago

Marcus-James-Adams commented 2 years ago

Community Note

Description

The azure portal allows you to apply TDE (Transparent data encryption) with either a system manged key, or a customer manged key,. It would be good if we could set this from the start via terraform

I would see it working similar to mssql_server_transparent_data_encryption

New or Affected Resource(s)

Potential Terraform Configuration

Example Usage with Service Managed Key

resource "azurerm_mssql_managed_instance_transparent_data_encryption" "example" {
  server_id = mssql_managed_instance.example.id
}

Example Usage with Customer Managed Key

resource "azurerm_mssql_managed_instance_transparent_data_encryption" "example" {
  server_id = sql_managed_instance.example.id
  key_vault_key_id = azurerm_key_vault_key.example.id
  auto_rotate_key = false
}
opslivia commented 2 years ago

This was released with #13748 behind the 3.0 Beta flag. Opt-in instructions for the 3.0 Beta here.

github-actions[bot] commented 2 years ago

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

katbyte commented 2 years ago

Reopening as there request was too support TDE at the server level and #13748 implements it at the DB level.

opslivia commented 2 years ago

Hi apologies, I linked the wrong issue closing this before. Since MSSQL resources have replaced the old SQL resources, I suggest we update this issue to ask for TDE on MSSQL Managed Instance instead.