last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

SQL Auditing settings should have Action-Groups configured to capture critical activities

Name SQL Auditing settings should have Action-Groups configured to capture critical activities
Azure Portal
Id 7ff426e2-515f-405a-91c8-4f2333442eb5
Version 1.0.0
details on versioning
Category SQL
Microsoft docs
Description The AuditActionsAndGroups property should contain at least SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP, FAILED_DATABASE_AUTHENTICATION_GROUP, BATCH_COMPLETED_GROUP to ensure a thorough audit logging
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Sql/servers/auditingSettings/auditActionsAndGroups[*] Microsoft.Sql servers/auditingSettings properties.auditActionsAndGroups[*] true
Rule ResourceTypes IF (1)
Microsoft.Sql/servers
History none
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
[Deprecated]: Azure Security Benchmark v1 42a694ed-f65e-42b2-aa9e-8052e9740a92 Regulatory Compliance Deprecated BuiltIn
[Preview]: RMIT Malaysia 97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6 Regulatory Compliance Preview BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.1.0 1a5bb27d-173f-493e-9568-eb56638dde4d Regulatory Compliance GA BuiltIn
JSON