AzPolicyAdvertizer

last sync: 2020-Jul-14 15:28:17 UTC

Azure Policy

Vulnerability Assessment settings for SQL server should contain an email address to receive scan reports

Policy DisplayName Vulnerability Assessment settings for SQL server should contain an email address to receive scan reports
Policy Id 057d6cfe-9c4f-4a6d-bc60-14420ea1f1a9
Policy Category SQL
Policy Description Ensure that an email address is provided for the 'Send scan reports to' field in the Vulnerability Assessment settings. This email address receives scan result summary after a periodic scan runs on SQL servers.
Policy Mode Indexed
Policy Type BuiltIn
Policy in Preview FALSE
Policy Deprecated FALSE
Policy Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists,Disabled)
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2019-10-03 22:58:00 add: Policy 057d6cfe-9c4f-4a6d-bc60-14420ea1f1a9
Used in Policy Initiative(s)
Initiative DisplayName Initiative Id
[Preview]: Australian Government ISM PROTECTED 27272c0b-c225-4cc3-b8b0-f2534b093077
Policy Rule 
{
  "properties": {
    "displayName": "Vulnerability Assessment settings for SQL server should contain an email address to receive scan reports",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Ensure that an email address is provided for the 'Send scan reports to' field in the Vulnerability Assessment settings. This email address receives scan result summary after a periodic scan runs on SQL servers.",
    "metadata": {
      "version": "1.0.0",
      "category": "SQL"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy"
        },
        "allowedValues": [
          "AuditIfNotExists",
          "Disabled"
        ],
        "defaultValue": "AuditIfNotExists"
      }
    },
    "policyRule": {
      "if": {
        "field": "type",
        "equals": "Microsoft.Sql/servers"
      },
      "then": {
      "effect": "[parameters('effect')]",
        "details": {
          "type": "Microsoft.Sql/servers/vulnerabilityAssessments",
          "name": "default",
          "existenceCondition": {
          "field": "Microsoft.Sql/servers/vulnerabilityAssessments/default.recurringScans.emails[*]",
            "notEquals": ""
          }
        }
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/057d6cfe-9c4f-4a6d-bc60-14420ea1f1a9",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "057d6cfe-9c4f-4a6d-bc60-14420ea1f1a9"
}