Azure SQL data encryption

gmplaunt 0

I want to confirm that Azure SQL connections are encrypted or that this Azure space does not allow unencrypted connections.

Mahesh Kurva 0 Reputation points Microsoft Vendor

2024-09-06T13:55:18.7733333+00:00

Hi @gmplaunt,

Welcome to Microsoft Q&A platform, thanks for the question.

Yes, Azure SQL connections are encrypted. There is always encryption (SSL/TLS) of all the connections made to Azure SQL Database, Azure SQL Managed Instance as well as Azure Synapse Analytics. This means there is no way for unencrypted connections to take place and so data in motion is always secured.

In addition, there are more security features available on Azure SQL such as Transparent Data Encryption (TDE) which is used for data stored and is automatically turned on for every new database created.

Please refer to the similar issue thread link: https://video2.skills-academy.com/en-us/answers/questions/203807/allow-only-encrypted-connection-to-azure-sql-serve.

For additional information, please refer the document: Transparent data encryption for SQL Database, SQL Managed Instance, and Azure Synapse Analytics.

I hope this answers your question. Let me know if you have any other questions.
Mahesh Kurva 0 Reputation points Microsoft Vendor

2024-09-09T08:45:46.3433333+00:00

Hi @gmplaunt,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. In case if you have any resolution, please do share that same with the community as it can be helpful to others. Otherwise, will respond with more details and we will try to help.
Mahesh Kurva 0 Reputation points Microsoft Vendor

2024-09-10T10:19:16.7266667+00:00

Hi @gmplaunt,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. In case if you have any resolution, please do share that same with the community as it can be helpful to others. Otherwise, will respond with more details and we will try to help.

1 answer

Q&A Assist

2024-09-04T16:54:31.8366667+00:00

AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more
Yes, Azure SQL connections are encrypted. Azure SQL Database, SQL Managed Instance, and Azure Synapse Analytics enforce encryption (SSL/TLS) at all times for all connections, ensuring that all data is encrypted "in transit" between the client and server irrespective of the setting of Encrypt or TrustServerCertificate in the connection string. As a best practice, it is recommended to specify an encrypted connection in the connection string used by the application and not trust the server certificate. This forces your application to verify the server certificate and thus prevents your application from being vulnerable to man-in-the-middle type attacks. Non-Microsoft drivers may not use TLS by default or rely on an older version of TLS (<1.2) in order to function. In this case, the server still allows you to connect to your database, but it is recommended that you evaluate the security risks of allowing such drivers and applications to connect to SQL Database, especially if you store sensitive data.

References:

An overview of Azure SQL Database and SQL Managed Instance security capabilities - Information protection and encryption

Azure security for cloud-native apps - Encryption in transit and at rest
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

Azure SQL data encryption

1 answer

Your answer