AzPolicyAdvertizer

last sync: 2025-Jul-10 17:22:57 UTC

[Preview]: Configure Azure Defender for SQL agent on virtual machine

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Preview]: Configure Azure Defender for SQL agent on virtual machine

2ada9901-073c-444a-9a9a-91865174f0aa

Version

1.0.0-preview
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]

Category

Security Center
Microsoft Learn

Description

Configure Windows machines to automatically install the Azure Defender for SQL agent where the Azure Monitor Agent is installed. Security Center collects events from the agent and uses them to provide security alerts and tailored hardening tasks (recommendations). Creates a resource group and Log Analytics workspace in the same region as the machine. Target virtual machines must be in a supported location.

Cloud environments

AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown

Available in AzUSGov

Unknown, no evidence if Policy definition is/not available in AzureUSGovernment

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Contributor	b24988ac-6180-42a0-ab88-20f7382dd24c

Rule aliases

IF (2)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Compute/virtualMachines/extensions/publisher	Microsoft.Compute	virtualMachines/extensions	properties.publisher	True		False
Microsoft.Compute/virtualMachines/extensions/type	Microsoft.Compute	virtualMachines/extensions	properties.type	True		False

THEN-ExistenceCondition (3)

Alias	Namespace	ResourceType	Path	PathIsDefault	Modifiable
Microsoft.Compute/virtualMachines/extensions/provisioningState	Microsoft.Compute	virtualMachines/extensions	properties.provisioningState	True	False
Microsoft.Compute/virtualMachines/extensions/publisher	Microsoft.Compute	virtualMachines/extensions	properties.publisher	True	False
Microsoft.Compute/virtualMachines/extensions/type	Microsoft.Compute	virtualMachines/extensions	properties.type	True	False

Rule resource types

IF (1)

Microsoft.Compute/virtualMachines/extensions

THEN-Deployment (5)

Microsoft.Compute/virtualMachines/extensions
Microsoft.Insights/dataCollectionRules
Microsoft.OperationalInsights/workspaces
Microsoft.Resources/deployments
Microsoft.Resources/resourceGroups

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
[Preview]: Configure Azure Defender for SQL agents on virtual machines	39a366e6-fdde-4f41-bbf8-3757f46d1611	Monitoring	Preview	BuiltIn	unknown
[Preview]: Configure Azure Defender for SQL agents on virtual machines	39a366e6-fdde-4f41-bbf8-3757f46d1611	Monitoring	Preview	BuiltIn	unknown

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-06-02 22:44:52	add	2ada9901-073c-444a-9a9a-91865174f0aa

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC