Feb 03 2021 05:02 AM
Hi,
We are using always encrypted to encrypt data in certain columns in the database (Azure SQL Managed Instance) by storing the key in Azure Key Vault. Is it possible to encrypt the data while processing the cubes that we have in Azure Analysis Services?
Feb 03 2021 06:38 PM
Feb 03 2021 11:38 PM
@Chris-Schmidt-MSFT Thanks for the reply! I have had a look at that one, but I fail to get it working due to the fact that we have our key stored in Azure Key Vault. I am not sure that storing the key in key vault is supported by AS, but I cant find any official documentation on this. I am also not sure on how I can access Azure AS in order to store the certificate on the server.
Feb 04 2021 05:20 AM
@Fosse83 For the certificate piece, try and install the certificate on the data gateway VM.
Regarding the key vault, I haven't tested it but try and grant the Analysis Services Service Principal that does your processing access to read from the key vault, like outlined in this document:
Grant permission to applications to access an Azure key vault using Azure RBAC | Microsoft Docs