last sync: 2020-Aug-05 13:05:29 UTC

Azure Policy

SQL Managed Instance should have the minimal TLS version of 1.2

Policy DisplayName SQL Managed Instance should have the minimal TLS version of 1.2
Policy Id a8793640-60f7-487c-b5c3-1d37215905c4
Policy Category SQL
Policy Description Setting minimal TLS version to 1.2 improves security by ensuring your SQL Managed Instance can only be accessed from clients using TLS 1.2. Using versions of TLS less than 1.2 is not reccomended since they have well documented security vunerabilities.
Policy Mode Indexed
Policy Type BuiltIn
Policy in Preview FALSE
Policy Deprecated FALSE
Policy Effect Default: Audit
Allowed: (Audit,Disabled)
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2020-07-14 15:28:17 add: Policy a8793640-60f7-487c-b5c3-1d37215905c4
Used in Policy Initiative(s) none
Policy Rule
{
  "properties": {
    "displayName": "SQL Managed Instance should have the minimal TLS version of 1.2",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Setting minimal TLS version to 1.2 improves security by ensuring your SQL Managed Instance can only be accessed from clients using TLS 1.2. Using versions of TLS less than 1.2 is not reccomended since they have well documented security vunerabilities.",
    "metadata": {
      "version": "1.0.0",
      "category": "SQL"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy"
        },
        "allowedValues": [
          "Audit",
          "Disabled"
        ],
        "defaultValue": "Audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Sql/managedInstances"
          },
          {
            "anyOf": [
              {
                "field": "Microsoft.Sql/managedInstances/minimalTlsVersion",
                "exists": false
              },
              {
                "field": "Microsoft.Sql/managedInstances/minimalTlsVersion",
                "notEquals": "1.2"
              }
            ]
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/a8793640-60f7-487c-b5c3-1d37215905c4",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "a8793640-60f7-487c-b5c3-1d37215905c4"
}