AzPolicyAdvertizer

last sync: 2025-Jul-10 17:22:57 UTC

Configure SQL servers to have auditing enabled

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure SQL servers to have auditing enabled
Id f4c68484-132f-41f9-9b6d-3e4b1cb55036
Version 3.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
3.0.0
Built-in Versioning [Preview]
Category SQL
Microsoft Learn
Description To ensure the operations performed against your SQL assets are captured, SQL servers should have auditing enabled. This is sometimes required for compliance with regulatory standards.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
SQL Security Manager 056cd41c-7e88-42e1-933e-88ba6a50c9c3
Storage Account Contributor 17d1049b-9a84-46fb-8f53-869881c3d3ab
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Sql/auditingSettings.state Microsoft.Sql
Microsoft.Sql		 servers/databases/auditingSettings
servers/auditingSettings		 properties.state
properties.state		 True
True
False
False
Rule resource types IF (1)
THEN-Deployment (3)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-08-30 14:27:30 change Major (2.0.0 > 3.0.0)
2021-07-30 15:17:20 change Major (1.2.0 > 2.0.0)
2021-03-31 14:35:06 change Minor (1.1.0 > 1.2.0)
2021-03-09 14:37:41 change Minor (1.0.0 > 1.1.0)
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC