Question 117 of 170 from exam DP-200: Implementing an Azure Data Solution

Question 117 of 170 from exam DP-200: Implementing an Azure Data Solution

Question

DRAG DROP -

You manage security for a database that supports a line of business application.

Private and personal data stored in the database must be protected and encrypted.

You need to configure the database to use Transparent Data Encryption (TDE).

Which five actions should you perform in sequence? To answer, select the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

Explanations

Step 1: Create a master key -

Step 2: Create or obtain a certificate protected by the master key

Step 3: Set the context to the company database

Step 4: Create a database encryption key and protect it by the certificate

Step 5: Set the database to use encryption

Example code:

USE master;

GO -

CREATE MASTER KEY ENCRYPTION BY PASSWORD = '<UseStrongPasswordHere>'; go

CREATE CERTIFICATE MyServerCert WITH SUBJECT = 'My DEK Certificate'; go

USE AdventureWorks2012;

GO -

CREATE DATABASE ENCRYPTION KEY -

WITH ALGORITHM = AES_128 -

ENCRYPTION BY SERVER CERTIFICATE MyServerCert;

GO -

ALTER DATABASE AdventureWorks2012

SET ENCRYPTION ON;

GO -

https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/transparent-data-encryption