AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

[Deprecated]: Advanced Threat Protection types should be set to 'All' in SQL Managed Instance advanced data security settings

Azure BuiltIn Policy definition

Source

Display name

[Deprecated]: Advanced Threat Protection types should be set to 'All' in SQL Managed Instance advanced data security settings

bda18df3-5e41-4709-add9-2554ce68c966

Version

1.0.1-deprecated
Details on versioning

Category

SQL
Microsoft Learn

Description

It's recommended to enable all Advanced Threat Protection types on your SQL Managed Instance. Enabling all types protects against SQL injection, database vulnerabilities, and any other anomalous activities.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

True

Effect

Default
Disabled
Allowed
AuditIfNotExists, Disabled

RBAC role(s)

none

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Sql/managedInstances/securityAlertPolicies/disabledAlerts[*]	Microsoft.Sql	managedInstances/securityAlertPolicies	properties.disabledAlerts[*]	True		False

Rule resource types

IF (1)
Microsoft.Sql/managedInstances

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2020-07-01 14:50:07	change	Previous DisplayName: Advanced Threat Protection types should be set to 'All' in SQL managed instance Advanced Data Security settings

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC