You have an Azure Synapse Analytics dedicated SQL pool. You need to ensure that data in the pool is encrypted at rest. The solution must NOT require modifying applications that query the data. What should you do?
A.
Enable encryption at rest for the Azure Data Lake Storage Gen2 account.
B.
Enable Transparent Data Encryption (TDE) for the pool.
C.
Use a customer-managed key to enable double encryption for the Azure Synapse workspace.
D.
Create an Azure key vault in the Azure subscription grant access to the pool.
Transparent Data Encryption (TDE) is a feature provided by Azure SQL Database and Azure Synapse Analytics that encrypts the database files at rest. It performs real-time I/O encryption and decryption of the database files, ensuring that the data is encrypted on disk. TDE operates transparently and does not require any changes to the application code or queries.
By enabling TDE for the dedicated SQL pool in Azure Synapse Analytics, you can achieve encryption at rest for the data stored in the pool without impacting the applications that access the data.
B is right, however using CMK configed at workspace level to achieve double encryption is also right.
https://docs.microsoft.com/en-us/azure/synapse-analytics/security/workspaces-encryption
This section is not available anymore. Please use the main Exam Page.DP-203 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
damaldon
Highly Voted 3 years, 6 months agojsav1
Most Recent 11 months, 3 weeks agokkk5566
1 year, 4 months agovctrhugo
1 year, 6 months agoDeeksha1234
2 years, 4 months agoyoulitai003
2 years, 7 months agobigw
2 years agodjblue
2 years, 10 months ago