AzPolicyAdvertizer

last sync: 2024-Mar-28 18:44:05 UTC

Configure Azure Defender to be enabled on SQL managed instances

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Configure Azure Defender to be enabled on SQL managed instances

c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd

Version

2.0.0
Details on versioning

Category

SQL
Microsoft Learn

Description

Enable Azure Defender on your Azure SQL Managed Instances to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
SQL Security Manager	056cd41c-7e88-42e1-933e-88ba6a50c9c3

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/managedInstances/securityAlertPolicies/state	Microsoft.Sql	managedInstances/securityAlertPolicies	properties.state	true

Rule resource types

IF (1)
Microsoft.Sql/managedInstances
THEN-Deployment (1)
Microsoft.Sql/managedInstances/securityAlertPolicies

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Preview]: Control the use of Microsoft SQL in a Virtual Enclave	0fbe78a5-1722-4f1b-83a5-89c14151fa60	VirtualEnclaves	Preview	BuiltIn
Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances	9cb3cc7a-b39b-4b82-bc89-e5a5d9ff7b97	Security Center	GA	BuiltIn

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-23 14:26:16	change	Major (1.0.0 > 2.0.0)
2021-07-30 15:17:20	add	c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC