Quantcast
Channel: SQL Server Integration Services forum
Viewing all articles
Browse latest Browse all 24688

SSIS inserting into Azure SQLDB Always Encrypted encrypted using Key Vault

$
0
0

I have an Azure SQL Database 'Test' with one column encrypted using Always Encrypted. I have stored the automatically generated column master key in a Azure Key Vault. I have tried configuring an SSIS package to read from an unencrypted flat file and insert/update records in to the Azure SQL Database. When I run the package from my workstation I get the following error:

 

[ADO NET Destination [2]] Error: An argument exception has occurred while data provider tried to insert data to destination. The returned message is : Failed to decrypt a column encryption key. Invalid key store provider name: 'AZURE_KEY_VAULT'. A key store provider name must denote either a system key store provider or a registered custom key store provider. Valid system key store provider names are: 'MSSQL_CERTIFICATE_STORE', 'MSSQL_CNG_STORE', 'MSSQL_CSP_PROVIDER'. Valid (currently registered) custom key store provider names are: . Please verify key store provider information in column master key definitions in the database, and verify all custom key store providers used in your application are registered properly.

 

I have configured the ADO.net connection manager Column Encryption Setting to enabled

 

How do I configure\register the Azure Key Vault provider with the ADO.net connection\driver? How do I Integrate the Azure Key Vault Provider into SSIS so I can access the CMK?

My next step if I can get this to work from SSDT is to deploy to the Azure Data Factory V2 integrated runtime that I have running and configured with SSISDB and SSIS Catalog on same Azure SQL Database as 'Test'.  


Viewing all articles
Browse latest Browse all 24688

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>