AzPolicyAdvertizer

last sync: 2023-Mar-21 18:43:23 UTC

Azure Policy definition

Configure Synapse workspaces to have auditing enabled

Name

Configure Synapse workspaces to have auditing enabled
Azure Portal

ac7891a4-ac7a-4ba0-9ae9-c923e5a225ee

Version

2.0.0
details on versioning

Category

Synapse
Microsoft docs

Description

To ensure the operations performed against your SQL assets are captured, Synapse workspaces should have auditing enabled. This is sometimes required for compliance with regulatory standards.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC
Role(s)

Role Name	Role Id
SQL Security Manager	056cd41c-7e88-42e1-933e-88ba6a50c9c3
Storage Account Contributor	17d1049b-9a84-46fb-8f53-869881c3d3ab

Rule
Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Synapse/workspaces/auditingSettings/state	Microsoft.Synapse	workspaces/auditingSettings	properties.state	false

Rule
ResourceTypes

IF (1)
Microsoft.Synapse/workspaces
THEN-Deployment (2)
Microsoft.Resources/deployments
Microsoft.Storage/storageAccounts

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-09-27 15:52:17	change	Major (1.1.0 > 2.0.0)
2021-03-31 14:35:06	change	Minor (1.0.0 > 1.1.0)
2021-03-09 14:37:41	add	ac7891a4-ac7a-4ba0-9ae9-c923e5a225ee

Initiatives
usage

none

JSON