AzPolicyAdvertizer

last sync: 2023-Jun-01 17:45:04 UTC

Azure Landing Zones (ALZ) Policy definition

SQL managed instances deploy a specific min TLS version requirement.

Name

SQL managed instances deploy a specific min TLS version requirement.
Azure Landing Zones (ALZ) GitHub
JSON Deploy-SqlMi-minTLS

Deploy-SqlMi-minTLS

Version

1.0.0
details on versioning

Category

SQL
Microsoft docs

Description

Deploy a specific min TLS version requirement and enforce SSL on SQL managed instances. Enables secure server to client by enforce minimal Tls Version to secure the connection between your database server and your client applications helps protect against 'man in the middle' attacks by encrypting the data stream between the server and your application. This configuration enforces that SSL is always enabled for accessing your database server.

Mode

Indexed

Type

Custom Azure Landing Zones (ALZ)

Preview

FALSE

Deprecated

FALSE

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

Used RBAC Role

Role Name	Role Id
Owner	8e3af657-a8ff-443c-a75c-2fe8c4bcb635

Rule Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/managedInstances/minimalTlsVersion	Microsoft.Sql	managedInstances	properties.minimalTlsVersion	false

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/managedInstances/minimalTlsVersion	Microsoft.Sql	managedInstances	properties.minimalTlsVersion	false

Rule ResourceTypes

IF (1)
Microsoft.Sql/managedInstances
THEN-Deployment (1)
Microsoft.Sql/managedInstances

History

none

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit	Enforce-EncryptTransit	Encryption	GA

JSON