This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 28.000000000000004%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
I cannot find the boolean parameter for enabling Transparent Data Encryption. I included my parameters for a database, server and storage account below. Is there perhaps a reason why this parameter is not shown? And can I leave a way all the network parameters starting with "private"?
{
"$schema": "http://schema.management.azure.com/schemas/2014-04-01-preview/deploymentTemplate.json#",
"contentVersion": "1.0.0.0",
"parameters": {
"administratorLogin": {
"type": "string",
"defaultValue": ""
},
"administratorLoginPassword": {
"type": "securestring",
"defaultValue": ""
},
"administrators": {
"type": "object",
"defaultValue": {}
},
"collation": {
"type": "string"
},
"databaseName": {
"type": "string"
},
"tier": {
"type": "string"
},
"skuName": {
"type": "string"
},
"location": {
"type": "string"
},
"maxSizeBytes": {
"type": "int"
},
"serverName": {
"type": "string"
},
"sampleName": {
"type": "string",
"defaultValue": ""
},
"zoneRedundant": {
"type": "bool",
"defaultValue": false
},
"licenseType": {
"type": "string",
"defaultValue": ""
},
"readScaleOut": {
"type": "string",
"defaultValue": "Disabled"
},
"numberOfReplicas": {
"type": "int",
"defaultValue": 0
},
"minCapacity": {
"type": "string",
"defaultValue": ""
},
"autoPauseDelay": {
"type": "string",
"defaultValue": ""
},
"enableADS": {
"type": "bool",
"defaultValue": false
},
"allowAzureIps": {
"type": "bool",
"defaultValue": true
},
"databaseTags": {
"type": "object",
"defaultValue": {}
},
"serverTags": {
"type": "object",
"defaultValue": {}
},
"enableVA": {
"type": "bool",
"defaultValue": false
},
"useVAManagedIdentity": {
"type": "bool",
"defaultValue": false,
"metadata": {
"description": "To enable vulnerability assessments, the user deploying this template must have an administrator or owner permissions."
}
},
"enablePrivateEndpoint": {
"type": "bool",
"defaultValue": false
},
"privateEndpointNestedTemplateId": {
"type": "string",
"defaultValue": ""
},
"privateEndpointSubscriptionId": {
"type": "string",
"defaultValue": ""
},
"privateEndpointResourceGroup": {
"type": "string",
"defaultValue": ""
},
"privateEndpointName": {
"type": "string",
"defaultValue": ""
},
"privateEndpointLocation": {
"type": "string",
"defaultValue": ""
},
"privateEndpointSubnetId": {
"type": "string",
"defaultValue": ""
},
"privateLinkServiceName": {
"type": "string",
"defaultValue": ""
},
"privateLinkServiceServiceId": {
"type": "string",
"defaultValue": ""
},
"privateEndpointVnetSubscriptionId": {
"type": "string",
"defaultValue": ""
},
"privateEndpointVnetResourceGroup": {
"type": "string",
"defaultValue": ""
},
"privateEndpointVnetName": {
"type": "string",
"defaultValue": ""
},
"privateEndpointSubnetName": {
"type": "string",
"defaultValue": ""
},
"enablePrivateDnsZone": {
"type": "bool",
"defaultValue": false
},
"privateLinkPrivateDnsZoneFQDN": {
"type": "string",
"defaultValue": ""
},
"privateEndpointDnsRecordUniqueId": {
"type": "string",
"defaultValue": ""
},
"privateEndpointTemplateLink": {
"type": "string",
"defaultValue": ""
},
"privateDnsForPrivateEndpointTemplateLink": {
"type": "string",
"defaultValue": ""
},
"privateDnsForPrivateEndpointNicTemplateLink": {
"type": "string",
"defaultValue": ""
},
"privateDnsForPrivateEndpointIpConfigTemplateLink": {
"type": "string",
"defaultValue": ""
},
"allowClientIp": {
"type": "bool",
"defaultValue": false
},
"clientIpRuleName": {
"type": "string",
"defaultValue": ""
},
"clientIpValue": {
"type": "string",
"defaultValue": ""
},
"requestedBackupStorageRedundancy": {
"type": "string",
"defaultValue": ""
},
"maintenanceConfigurationId": {
"type": "string",
"defaultValue": ""
},
"keyId": {
"type": "string",
"defaultValue": "",
"metadata": {
"description": "Uri of the encryption key."
}
},
"identity": {
"type": "object",
"defaultValue": {},
"metadata": {
"description": "Azure Active Directory identity of the server."
}
},
"primaryUserAssignedIdentityId": {
"type": "string",
"defaultValue": "",
"metadata": {
"description": "resource id of a user assigned identity to be used by default."
}
},
"minimalTlsVersion": {
"type": "string",
"defaultValue": ""
},
"enableSqlLedger": {
"type": "bool",
"defaultValue": false
},
"connectionType": {
"type": "string",
"defaultValue": ""
},
"enableDigestStorage": {
"type": "string",
"defaultValue": ""
},
"digestStorageOption": {
"type": "string",
"defaultValue": ""
},
"digestStorageName": {
"type": "string",
"defaultValue": ""
},
"blobStorageContainerName": {
"type": "string",
"defaultValue": ""
},
"retentionDays": {
"type": "string",
"defaultValue": ""
},
"retentionPolicy": {
"type": "bool",
"defaultValue": true
},
"digestAccountResourceGroup": {
"type": "string",
"defaultValue": ""
},
"digestRegion": {
"type": "string",
"defaultValue": ""
},
"storageAccountdigestRegion": {
"type": "string",
"defaultValue": ""
},
"isNewDigestLocation": {
"type": "bool",
"defaultValue": false
},
"isPermissionAssigned": {
"type": "bool",
"defaultValue": false
},
"sqlLedgerTemplateLink": {
"type": "string",
"defaultValue": ""
},
"servicePrincipal": {
"type": "object",
"defaultValue": {}
}
}
A similar question was asked on GitHub https://github.com/MicrosoftDocs/azure-docs/issues/38774 and the response was:
All newly created SQL databases and Managed Instance databases are encrypted by default by using service-managed transparent data encryption.
Could you please elaborate your requirement.
Thanks, now it's clear for me. I was also wondering what parameters I could leave out. I think not all parameters are necessary to be filled in. I want to keep the template simple as it's just for a school project.