As the threat of data breaches and theft is continually on the rise, there is more and more of a need for sound data security. In this hands-on lab scenario, your organization is reducing its on-site footprint and moving as many databases as possible to the cloud. As part of this effort, you have already migrated one of your primary sales databases, **acweb**, to Azure SQL Database. Both for the protection of your customers and the good of your company, it falls to you as the database administrator to ensure this database is properly secured and audited. Performing the actions of this lab will help you become familiar with implementing data encryption on Azure SQL Database, configuring data masking, applying data classification, and performing a database audit.
Successfully complete this lab by achieving the following learning objectives:
- Implement Customer-Managed Encryption
Configure the acweb database to be encrypted using your own key stored in Azure Key Vault.
- Implement Data Masking
Configure data masking on the LastName column of the Customer table so only the first two characters are visible to non-administrative users.
- Apply Data Classification
Implement the recommended Data Classification & Discovery items.
- Implement a Database Audit
Configure a database-level audit for acweb activity.