DROP CRYPTOGRAPHIC PROVIDER (Transact-SQL)
Applies to: 
SQL Server
Azure SQL Managed Instance
Drops a cryptographic provider within SQL Server.
Transact-SQL syntax conventions
Syntax
DROP CRYPTOGRAPHIC PROVIDER provider_name
Note
To view Transact-SQL syntax for SQL Server 2014 (12.x) and earlier versions, see Previous versions documentation.
Arguments
provider_name
Is the name of the Extensible Key Management provider.
Remarks
To delete an Extensible Key Management (EKM) provider, all sessions that use the provider must be stopped.
An EKM provider can only be dropped if there are no credentials mapped to it.
If there are keys mapped to an EKM provider when it is dropped the GUIDs for the keys remain stored in SQL Server. If a provider is created later with the same key GUIDs, the keys will be reused.
Permissions
Requires CONTROL permission on the symmetric key.
Examples
The following example drops a cryptographic provider called SecurityProvider.
/* First, disable provider to perform the upgrade.
This will terminate all open cryptographic sessions. */
ALTER CRYPTOGRAPHIC PROVIDER SecurityProvider
SET ENABLED = OFF;
GO
/* Drop the provider. */
DROP CRYPTOGRAPHIC PROVIDER SecurityProvider;
GO
See Also
Extensible Key Management (EKM)
CREATE CRYPTOGRAPHIC PROVIDER (Transact-SQL)
ALTER CRYPTOGRAPHIC PROVIDER (Transact-SQL)
CREATE SYMMETRIC KEY (Transact-SQL)
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for