Query: Azure Synapse workspaces should use customer-managed keys to encrypt data at rest

Description

Use customer-managed keys to control the encryption at rest of the data stored in Azure Synapse workspaces. Customer-managed keys deliver double encryption by adding a second layer of encryption on top of the default encryption with service-managed keys.

Query

Tables used in this query:

• azure_subscription
• azure_synapse_workspace

Controls using this query:

• Azure Synapse workspaces should use customer-managed keys to encrypt data at rest

SQL