last sync: 2024-Apr-24 17:46:58 UTC

Virtual network firewall rule on Azure SQL Database should be enabled to allow traffic from the specified subnet

Azure BuiltIn Policy definition

Source Azure Portal
Display name Virtual network firewall rule on Azure SQL Database should be enabled to allow traffic from the specified subnet
Id 77e8b146-0078-4fb2-b002-e112381199f0
Version 1.0.0
Details on versioning
Category SQL
Microsoft Learn
Description Virtual network based firewall rules are used to enable traffic from a specific subnet to Azure SQL Database while ensuring the traffic stays within the Azure boundary.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Fixed
AuditIfNotExists
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Sql/servers/virtualNetworkRules/virtualNetworkSubnetId Microsoft.Sql servers/virtualNetworkRules properties.virtualNetworkSubnetId false
Rule resource types IF (1)
Microsoft.Sql/servers
Compliance
The following 1 compliance controls are associated with this Policy definition 'Virtual network firewall rule on Azure SQL Database should be enabled to allow traffic from the specified subnet' (77e8b146-0078-4fb2-b002-e112381199f0)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
RMiT_v1.0 Appendix_5.6 RMiT_v1.0_Appendix_5.6 RMiT Appendix 5.6 Control Measures on Cybersecurity Control Measures on Cybersecurity - Appendix 5.6 Customer n/a Ensure security controls for remote access to server include the following: (a) restrict access to only hardened and locked down end-point devices; (b) use secure tunnels such as TLS and VPN IPSec; (c) deploy ‘gateway’ server with adequate perimeter defences and protection such as firewall, IPS and antivirus; and (d) close relevant ports immediately upon expiry of remote access. link 19
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
RMIT Malaysia 97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6 Regulatory Compliance GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-07-08 14:28:08 add 77e8b146-0078-4fb2-b002-e112381199f0
JSON compare n/a
JSON
api-version=2021-06-01
EPAC