AzPolicyAdvertizer

last sync: 2023-Mar-21 18:43:23 UTC

Azure Policy definition

Configure SQL servers to have auditing enabled

Name

Configure SQL servers to have auditing enabled
Azure Portal

f4c68484-132f-41f9-9b6d-3e4b1cb55036

Version

3.0.0
details on versioning

Category

SQL
Microsoft docs

Description

To ensure the operations performed against your SQL assets are captured, SQL servers should have auditing enabled. This is sometimes required for compliance with regulatory standards.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC
Role(s)

Role Name	Role Id
SQL Security Manager	056cd41c-7e88-42e1-933e-88ba6a50c9c3
Storage Account Contributor	17d1049b-9a84-46fb-8f53-869881c3d3ab

Rule
Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/auditingSettings.state	Microsoft.Sql Microsoft.Sql	servers/databases/auditingSettings servers/auditingSettings	properties.state properties.state	false false

Rule
ResourceTypes

IF (1)
Microsoft.Sql/servers
THEN-Deployment (3)
Microsoft.Resources/deployments
Microsoft.Sql/servers/auditingSettings
Microsoft.Storage/storageAccounts

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-30 14:27:30	change	Major (2.0.0 > 3.0.0)
2021-07-30 15:17:20	change	Major (1.2.0 > 2.0.0)
2021-03-31 14:35:06	change	Minor (1.1.0 > 1.2.0)
2021-03-09 14:37:41	change	Minor (1.0.0 > 1.1.0)

Initiatives
usage

none

JSON