last sync: 2024-May-27 19:38:21 UTC

Configure Azure Defender to be enabled on SQL managed instances

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure Azure Defender to be enabled on SQL managed instances
Id c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd
Version 2.0.0
Details on versioning
Category SQL
Microsoft Learn
Description Enable Azure Defender on your Azure SQL Managed Instances to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
SQL Security Manager 056cd41c-7e88-42e1-933e-88ba6a50c9c3
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Sql/managedInstances/securityAlertPolicies/state Microsoft.Sql managedInstances/securityAlertPolicies properties.state true
Rule resource types IF (1)
THEN-Deployment (1)
The following 1 compliance controls are associated with this Policy definition 'Configure Azure Defender to be enabled on SQL managed instances' (c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.exp.6 Protection against harmful code op.exp.6 Protection against harmful code 404 not found n/a n/a 69
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Control the use of Microsoft SQL in a Virtual Enclave 0fbe78a5-1722-4f1b-83a5-89c14151fa60 VirtualEnclaves Preview BuiltIn
Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances 9cb3cc7a-b39b-4b82-bc89-e5a5d9ff7b97 Security Center GA BuiltIn
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn
Date/Time (UTC ymd) (i) Change type Change detail
2021-08-23 14:26:16 change Major (1.0.0 > 2.0.0)
2021-07-30 15:17:20 add c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd
JSON compare
compare mode: version left: version right: