Public preview: TDE with customer managed keys on Azure SQL Hyperscale


Azure SQL Transparent Data Encryption (TDE)  with customer-managed keys enables customers to control the key lifecycle management, permissions and operations of keys stored in their own Azure Key Vault. We are announcing the public preview of TDE with customer-managed keys on Azure SQL Database Hyperscale.

Quick start instructions with Azure CLI

 

1. Assign Azure AD identity to your server.

 

If it is a new server you are creating, then you can assign an AAD identity while creating it via az sql create
az sql server create –name <servername> –resource-group <rgname> –location <location> –admin-user <user> –admin-password <password> –assign-identity If it is