AzPolicyAdvertizer

last sync: 2023-Jun-01 17:45:04 UTC

Azure Landing Zones (ALZ) Policy definition

SQL Managed Instance should have the minimal TLS version set to the highest version

Name

SQL Managed Instance should have the minimal TLS version set to the highest version
Azure Landing Zones (ALZ) GitHub
JSON Deny-SqlMi-minTLS

Deny-SqlMi-minTLS

Version

1.0.0
details on versioning

Category

SQL
Microsoft docs

Description

Setting minimal TLS version to 1.2 improves security by ensuring your SQL Managed Instance can only be accessed from clients using TLS 1.2. Using versions of TLS less than 1.2 is not reccomended since they have well documented security vunerabilities.

Mode

Indexed

Type

Custom Azure Landing Zones (ALZ)

Preview

FALSE

Deprecated

FALSE

Effect

Default
Audit
Allowed
Audit, Disabled, Deny

Used RBAC Role

none

Rule Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/managedInstances/minimalTlsVersion	Microsoft.Sql	managedInstances	properties.minimalTlsVersion	false

Rule ResourceTypes

IF (1)
Microsoft.Sql/managedInstances

History

none

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit	Enforce-EncryptTransit	Encryption	GA

JSON