AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

SQL Auditing settings should have Action-Groups configured to capture critical activities

Name

SQL Auditing settings should have Action-Groups configured to capture critical activities
Azure Portal

7ff426e2-515f-405a-91c8-4f2333442eb5

Version

1.0.0
details on versioning

Category

SQL
Microsoft docs

Description

The AuditActionsAndGroups property should contain at least SUCCESSFUL_DATABASE_AUTHENTICATION_GROUP, FAILED_DATABASE_AUTHENTICATION_GROUP, BATCH_COMPLETED_GROUP to ensure a thorough audit logging

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)

Used RBAC Role

none

Rule Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/servers/auditingSettings/auditActionsAndGroups[*]	Microsoft.Sql	servers/auditingSettings	properties.auditActionsAndGroups[*]	true

Rule ResourceTypes

IF (1)
Microsoft.Sql/servers

History

none

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Deprecated]: Azure Security Benchmark v1	42a694ed-f65e-42b2-aa9e-8052e9740a92	Regulatory Compliance	Deprecated	BuiltIn
[Preview]: RMIT Malaysia	97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6	Regulatory Compliance	Preview	BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.1.0	1a5bb27d-173f-493e-9568-eb56638dde4d	Regulatory Compliance	GA	BuiltIn

JSON