You have an Azure subscription that contains an Azure SQL database named SQL1 and an Azure key vault named KeyVault1. KeyVault1 stores the keys shown in the following table. You need to configure Transparent Data Encryption (TDE). TDE will use a customer-managed key for SQL1. Which keys can you use?
The key must be an asymmetric, RSA or RSA HSM key. The supported key lengths are 2048-bit and 3072-bit. Reference: https://docs.microsoft.com/en-us/azure/azure-sql/database/transparent-data-encryption-byok-overview
