AzPolicyAdvertizer

last sync: 2025-Mar-14 18:30:15 UTC

Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace
Id c859b78a-a128-4376-a838-e97ce6625d16
Version 1.9.0
Details on versioning
Versioning Versions supported for Versioning: 8
1.3.0-preview
1.3.1
1.4.0
1.5.0
1.6.0
1.7.0
1.8.0
1.9.0
Built-in Versioning [Preview]
Category Security Center
Microsoft Learn
Description Microsoft Defender for SQL collects events from the agent and uses them to provide security alerts and tailored hardening tasks (recommendations). Create a resource group, a Data Collection Rule and Log Analytics workspace in the same region as the machine.
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '1.8.0'
Repository: Azure-Policy c859b78a-a128-4376-a838-e97ce6625d16
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
Rule aliases THEN-Details (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.SqlVirtualMachine/SqlVirtualMachines/virtualMachineResourceId Microsoft.SqlVirtualMachine SqlVirtualMachines properties.virtualMachineResourceId True False
THEN-ExistenceCondition (3)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Compute/virtualMachines/extensions/provisioningState Microsoft.Compute virtualMachines/extensions properties.provisioningState True False
Microsoft.Compute/virtualMachines/extensions/publisher Microsoft.Compute virtualMachines/extensions properties.publisher True False
Microsoft.Compute/virtualMachines/extensions/type Microsoft.Compute virtualMachines/extensions properties.type True False
Rule resource types IF (1)
Microsoft.SqlVirtualMachine/SqlVirtualMachines
THEN-Deployment (5)
Microsoft.Compute/virtualMachines/extensions
Microsoft.Insights/dataCollectionRules
Microsoft.OperationalInsights/workspaces
Microsoft.Resources/deployments
Microsoft.Resources/resourceGroups
Compliance
The following 1 compliance controls are associated with this Policy definition 'Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace' (c859b78a-a128-4376-a838-e97ce6625d16)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.exp.6 Protection against harmful code op.exp.6 Protection against harmful code 404 not found n/a n/a 61
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace d7c3ea3a-edf3-4bd5-bd64-d5b635b05393 Security Center GA BuiltIn true
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn unknown
History
Date/Time (UTC ymd) (i) Change type Change detail
2025-01-21 19:02:36 change Minor (1.8.0 > 1.9.0)
2024-10-31 18:50:28 change Minor (1.7.0 > 1.8.0)
2024-09-10 17:48:30 change Minor (1.6.0 > 1.7.0)
2024-06-10 18:18:08 change Minor (1.5.0 > 1.6.0)
2024-04-22 16:32:55 change Minor (1.4.0 > 1.5.0)
2024-01-12 18:35:06 change Minor (1.3.1 > 1.4.0)
2023-11-17 19:29:28 change Patch, old suffix: preview (1.3.0-preview > 1.3.1)
2023-10-31 19:02:40 change Minor, suffix remains equal (1.2.0-preview > 1.3.0-preview)
2023-09-11 17:59:12 change Minor, suffix remains equal (1.1.0-preview > 1.2.0-preview)
2023-08-22 17:59:24 add c859b78a-a128-4376-a838-e97ce6625d16
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC