Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
These settings are configured in the tenant settings section of the Admin portal. For information about how to get to and use tenant settings, see About tenant settings.
Important
This feature is in preview.
Apply customer-managed keys (preview)
Customer-managed keys (CMK) are encryption keys that you create, own, and manage in your Azure Key Vault (AKV). By using a CMK, you can supplement default encryption with an extra encryption layer. You can use customer-managed keys for greater flexibility to manage access controls or to meet specific regulatory compliance.
Enable CMK for Fabric workspaces tenant setting
By default, the CMK feature is enabled at the tenant level. This means that workspace administrators can see this setting and choose to enable it for their workspaces. CMK can be enabled and disabled for the workspace while the tenant setting is on. Once the tenant setting is turned off, you can no longer enable CMK for workspaces in that tenant or disable CMK for workspaces that already have CMK turned on in that tenant.
To learn how to set up CMK encryption, see customer-managed keys for Fabric workspaces.