last sync: 2024-Mar-01 17:50:27 UTC

Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL
Id ddca0ddc-4e9d-4bbb-92a1-f7c4dd7ef7ce
Version 1.3.0
Details on versioning
Category Security Center
Microsoft Learn
Description Configure Windows SQL Virtual Machines to automatically install the Microsoft Defender for SQL extension. Microsoft Defender for SQL collects events from the agent and uses them to provide security alerts and tailored hardening tasks (recommendations).
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Monitoring Contributor 749f88d5-cbae-40b8-bcfc-e573ddc772fa
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293
Rule aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Compute/imagePublisher Microsoft.Compute
Microsoft.Compute
Microsoft.Compute
virtualMachines
virtualMachineScaleSets
disks
properties.storageProfile.imageReference.publisher
properties.virtualMachineProfile.storageProfile.imageReference.publisher
properties.creationData.imageReference.id
false
false
false
Microsoft.Compute/virtualMachines/storageProfile.osDisk.osType Microsoft.Compute virtualMachines properties.storageProfile.osDisk.osType true
THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Compute/virtualMachines/extensions/provisioningState Microsoft.Compute virtualMachines/extensions properties.provisioningState false
Microsoft.Compute/virtualMachines/extensions/publisher Microsoft.Compute virtualMachines/extensions properties.publisher false
Microsoft.Compute/virtualMachines/extensions/type Microsoft.Compute virtualMachines/extensions properties.type false
Rule resource types IF (1)
Microsoft.Compute/virtualMachines
THEN-Deployment (2)
Microsoft.Compute/virtualMachines/extensions
Microsoft.Insights/dataCollectionRuleAssociations
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace d7c3ea3a-edf3-4bd5-bd64-d5b635b05393 Security Center GA BuiltIn
Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a user-defined LA workspace de01d381-bae9-4670-8870-786f89f49e26 Security Center GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2024-01-12 18:35:06 change Minor (1.2.1 > 1.3.0)
2023-11-17 19:29:28 change Patch, old suffix: preview (1.2.0-preview > 1.2.1)
2023-10-31 19:02:40 change Minor, suffix remains equal (1.1.0-preview > 1.2.0-preview)
2023-09-11 17:59:12 change Minor, suffix remains equal (1.0.0-preview > 1.1.0-preview)
2023-08-22 17:59:24 add ddca0ddc-4e9d-4bbb-92a1-f7c4dd7ef7ce
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC