Specifies the Client Secret used to authenticate against the Azure Key Vault. This option is used only when Always Encrypted is enabled (ColumnEncryption=Enabled | ResultsetOnly) and Azure Key Vault is the keystore provider. The Azure Key Vault stores the column master key used for Always Encrypted functionality. To access the column master key from the Azure Key Vault, the Client Secret and principal ID must be provided.
Valid Values
client_secret
where:
client_secret
is the client Secret used to authenticate against the Azure Key Vault.
Notes
To specify the principal ID, use the Key Store Principal Id (AEKeystorePrincipalId) connection option.
This option is used only when the Azure Key Vault is specified as the keystore provider in the encryption metadata for result set columns or in statement parameters.
The driver determines which keystore provider to use based on the encryption metadata received from the server.
To specify the principal ID, use the Key Store Principal Id (AEKeystorePrincipalId) connection option.