AzPolicyAdvertizer

last sync: 2025-Jul-11 17:24:21 UTC

Configure SQL servers to have auditing enabled to Log Analytics workspace

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure SQL servers to have auditing enabled to Log Analytics workspace
Id 25da7dfb-0666-4a15-a8f5-402127efd8bb
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category SQL
Microsoft Learn
Description To ensure the operations performed against your SQL assets are captured, SQL servers should have auditing enabled. If auditing is not enabled, this policy will configure auditing events to flow to the specified Log Analytics workspace.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293
SQL Security Manager 056cd41c-7e88-42e1-933e-88ba6a50c9c3
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Sql/servers/auditingSettings/state Microsoft.Sql servers/auditingSettings properties.state True True
Rule resource types IF (1)
THEN-Deployment (1)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-03-11 18:16:48 add 25da7dfb-0666-4a15-a8f5-402127efd8bb
JSON compare n/a
JSON
api-version=2021-06-01
EPAC