AzPolicyAdvertizer

last sync: 2024-Apr-24 17:46:58 UTC

SQL managed instances deploy a specific min TLS version requirement.

Azure Landing Zones (ALZ) Policy definition

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Deploy-SqlMi-minTLS
Display name SQL managed instances deploy a specific min TLS version requirement.
Id Deploy-SqlMi-minTLS
Version 1.2.0
Details on versioning
Category SQL
Description Deploy a specific min TLS version requirement and enforce SSL on SQL managed instances. Enables secure server to client by enforce minimal Tls Version to secure the connection between your database server and your client applications helps protect against 'man in the middle' attacks by encrypting the data stream between the server and your application. This configuration enforces that SSL is always enabled for accessing your database server.
Mode Indexed
Type Custom Azure Landing Zones (ALZ)
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
SQL Managed Instance Contributor 4939a1f6-9ae0-4e48-a1e0-f2cbe897382d
Rule aliases IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Sql/managedInstances/minimalTlsVersion Microsoft.Sql managedInstances properties.minimalTlsVersion false
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Sql/managedInstances/minimalTlsVersion Microsoft.Sql managedInstances properties.minimalTlsVersion false
Rule resource types IF (1)
Microsoft.Sql/managedInstances
THEN-Deployment (1)
Microsoft.Sql/managedInstances
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit Enforce-EncryptTransit Encryption GA
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-09-27 17:59:47 change Minor (1.0.0 > 1.2.0)
JSON compare
compare mode: version left: version right:
JSON
EPAC