• Grey Twitter Icon
  • Grey Facebook Icon
  • Grey LinkedIn Icon
  • Grey Google+ Icon

© 2016 - 2019 All rights reserved. PigeonSQL.com | Filip Holub

How to enable TDE?

January 24, 2017

TDE is "Transparent Data Encryption", TDE provide encryption and decryption input and output files with data. TDE uses "Database Encryption Key" saved in Master database. To turn on TDE must perform three conditions:


1) We have to create master key in master database

2) We have to create certificate in master database

3) We have to create database encryption key in user database


All these conditions will do via T-SQL:


 State of encryption database you can find in system view:


 - sys.dm_database_encryption_keys



Interesting facts about TDE:


- When mirroring databases are encrypted both databases

- When encryption is enabled on the database to encrypt all full-text indexes

- If database contains Read-Only filegroup, encryption failure

- When encryption is enabled you can't use backup with compression (Expect MSSQL 2016)





See you next time!





Please reload

Please reload

  • Facebook Social Icon
  • Google+ Social Icon
  • LinkedIn Social Icon
  • Twitter Social Icon