---
title: Data encryption for SQL Database Server should be enabled
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: >-
  Docs > Datadog Security > OOTB Rules > Data encryption for SQL Database Server
  should be enabled
---

# Data encryption for SQL Database Server should be enabled
 
## Description{% #description %}

By default, Transparent Data Encryption (TDE) is enabled on every SQL Server, ensuring real-time encryption and decryption of the database, backups, and transaction log files at rest. TDE helps protect against malicious activities without requiring any changes to the application. It is important to note that TDE can be enabled or disabled on an individual SQL Database level and not on the SQL Server level.

## Remediation{% #remediation %}

### From the console{% #from-the-console %}

1. Go to **SQL databases**.
1. For each DB instance, select **Transparent data encryption**.
1. Set **Data encryption** to **On**.