AzPolicyAdvertizer

last sync: 2023-Dec-04 18:38:36 UTC

Azure Policy definition

Configure SQL servers to have auditing enabled

Source

Azure Portal

Display name

Configure SQL servers to have auditing enabled

f4c68484-132f-41f9-9b6d-3e4b1cb55036

Version

3.0.0
Details on versioning

Category

SQL
Microsoft Learn

Description

To ensure the operations performed against your SQL assets are captured, SQL servers should have auditing enabled. This is sometimes required for compliance with regulatory standards.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
SQL Security Manager	056cd41c-7e88-42e1-933e-88ba6a50c9c3
Storage Account Contributor	17d1049b-9a84-46fb-8f53-869881c3d3ab

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Sql/auditingSettings.state	Microsoft.Sql Microsoft.Sql	servers/databases/auditingSettings servers/auditingSettings	properties.state properties.state	false false

Rule resource types

IF (1)
Microsoft.Sql/servers
THEN-Deployment (3)
Microsoft.Resources/deployments
Microsoft.Sql/servers/auditingSettings
Microsoft.Storage/storageAccounts

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-30 14:27:30	change	Major (2.0.0 > 3.0.0)
2021-07-30 15:17:20	change	Major (1.2.0 > 2.0.0)
2021-03-31 14:35:06	change	Minor (1.1.0 > 1.2.0)
2021-03-09 14:37:41	change	Minor (1.0.0 > 1.1.0)

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC