last sync: 2021-Jul-23 16:37:57 UTC

Azure Policy definition

Auditing on Synapse workspace should be enabled

Name Auditing on Synapse workspace should be enabled
Azure Portal
Id e04e5000-cd89-451d-bb21-a14d24ff9c73
Version 1.0.0
details on versioning
Category Synapse
Microsoft docs
Description Auditing on your Synapse workspace should be enabled to track database activities across all databases on the dedicated SQL pools and save them in an audit log.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-03-09 14:37:41 add e04e5000-cd89-451d-bb21-a14d24ff9c73
Used in Initiatives none
JSON
{
  "properties": {
    "displayName": "Auditing on Synapse workspace should be enabled",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Auditing on your Synapse workspace should be enabled to track database activities across all databases on the dedicated SQL pools and save them in an audit log.",
    "metadata": {
      "version": "1.0.0",
      "category": "Synapse"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy"
        },
        "allowedValues": [
          "AuditIfNotExists",
          "Disabled"
        ],
        "defaultValue": "AuditIfNotExists"
      },
      "setting": {
        "type": "String",
        "metadata": {
          "displayName": "Desired Auditing setting"
        },
        "allowedValues": [
          "enabled",
          "disabled"
        ],
        "defaultValue": "enabled"
      }
    },
    "policyRule": {
      "if": {
        "field": "type",
        "equals": "Microsoft.Synapse/workspaces"
      },
      "then": {
      "effect": "[parameters('effect')]",
        "details": {
          "type": "Microsoft.Synapse/workspaces/auditingSettings",
          "name": "default",
          "existenceCondition": {
            "field": "Microsoft.Synapse/workspaces/auditingSettings/state",
          "equals": "[parameters('setting')]"
          }
        }
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/e04e5000-cd89-451d-bb21-a14d24ff9c73",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "e04e5000-cd89-451d-bb21-a14d24ff9c73"
}