From the course: Microsoft Azure Security Technology (AZ-500) Cert Prep by Microsoft Press
Join today to access over 25,200 courses taught by industry experts.
Implement transparent database encryption (TDE) - Azure Tutorial
From the course: Microsoft Azure Security Technology (AZ-500) Cert Prep by Microsoft Press
Implement transparent database encryption (TDE)
- [Instructor] Well, I said I'd get to it next, almost next, first TDE, then always encrypted. Transparent data encryption, or TDE, is Microsoft's technology for encrypting your Azure SQL database files, log files, and backups without making any changes. You might know that in Azure SQL and Azure SQL managed instance, backups are done for you automatically. You actually can't override the default backup schedule. The neat thing about TDE, it works very analogously to what we've seen so far with storage service encryption, or SSE, with Azure storage and with Azure virtual machine disks. Azure automatically encrypts the data as it's written into files in the data center, decrypts it when accessed only by authorized users. And of course, we can consider keeping those keys in Azure Key Vault for easy retrieval and management.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
-
-
-
-
-
(Locked)
Learning objectives30s
-
(Locked)
Enable Microsoft Entra database authentication55s
-
(Locked)
Enable database auditing1m 6s
-
(Locked)
Identify use cases for the Microsoft Purview governance portal1m 6s
-
(Locked)
Implement data classification of sensitive information using the Microsoft Purview governance portal1m 40s
-
(Locked)
Plan and implement dynamic masking1m 26s
-
(Locked)
Implement transparent database encryption (TDE)59s
-
(Locked)
Recommend when to use Azure SQL database always encrypted25m 43s
-
(Locked)
-
-
-
-