last sync: 2023-Jun-02 17:44:47 UTC

Azure Policy definition

MySQL server should use a virtual network service endpoint

Name MySQL server should use a virtual network service endpoint
Azure Portal
Id 3375856c-3824-4e0e-ae6a-79e011dd4c47
Version 1.0.2
details on versioning
Category SQL
Microsoft docs
Description Virtual network based firewall rules are used to enable traffic from a specific subnet to Azure Database for MySQL while ensuring the traffic stays within the Azure boundary. This policy provides a way to audit if the Azure Database for MySQL has virtual network service endpoint being used.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC
Role(s)
none
Rule
Aliases
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.DBforMySQL/servers/virtualNetworkRules/virtualNetworkSubnetId Microsoft.DBforMySQL servers/virtualNetworkRules properties.virtualNetworkSubnetId false
Rule
ResourceTypes
IF (1)
Microsoft.DBforMySQL/servers
Compliance The following 1 compliance controls are associated with this Policy definition 'MySQL server should use a virtual network service endpoint' (3375856c-3824-4e0e-ae6a-79e011dd4c47)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
RMiT_v1.0 Appendix_5.6 RMiT_v1.0_Appendix_5.6 RMiT Appendix 5.6 Control Measures on Cybersecurity Control Measures on Cybersecurity - Appendix 5.6 Customer n/a Ensure security controls for remote access to server include the following: (a) restrict access to only hardened and locked down end-point devices; (b) use secure tunnels such as TLS and VPN IPSec; (c) deploy ‘gateway’ server with adequate perimeter defences and protection such as firewall, IPS and antivirus; and (d) close relevant ports immediately upon expiry of remote access. link 19
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-02-27 09:26:21 add 3375856c-3824-4e0e-ae6a-79e011dd4c47
Initiatives
usage
Initiative DisplayName Initiative Id Initiative Category State Type
RMIT Malaysia 97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6 Regulatory Compliance GA BuiltIn
JSON