TDE BYOK and Geo-Replication in Azure SQL DB

  • Comments posted to this topic are about the item TDE BYOK and Geo-Replication in Azure SQL DB

  • For some reason, I couldn't use the set-azkeyvaultpolicy the way your example did.  specifically, I grabbed the identity thus:

    $identity = Get-AzSqlServer -ServerName myservernamehere

    but I had to use -ObjectId instead of ServicePrincipalName

    set-azkeyvaultaccesspolicy -VaultName $keyvault.VaultName -ObjectId $identity.Identity.PrincipalId -PermissionsToKeys wrapkey,unwrapkey,get

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply