AzInitiativeAdvertizer

last sync: 2025-Oct-24 17:22:50 UTC

Azure SQL Managed Instance should have Microsoft Entra-only authentication

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameAzure SQL Managed Instance should have Microsoft Entra-only authentication
Id9b8d8228-e8cc-4c95-8d98-47f32df40b5e
Version1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
CategorySQL
Microsoft Learn
DescriptionRequire Microsoft Entra-only authentication for Azure SQL Managed instance, disabling local authentication methods. This allows access exclusively via Microsoft Entra identities, enhancing security with modern authentication enhancements including MFA, SSO, and secret-less programmatic access with managed identities.
Cloud environmentsAzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = unknown
Available in AzUSGovUnknown, no evidence if PolicySet definition is/not available in AzureUSGovernment
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 2
Builtin Policies: 2
Static Policies: 0
GA: 2
1 categories:
SQL: 2
Policy-used
Policy DisplayName Policy Id Category Version Versioning Effect Roles# Roles State policy in AzUSGov
Azure SQL Managed Instance should have Microsoft Entra-only authentication enabled 0c28c3fb-c244-42d5-a9bf-f35f2999577b SQL 1.0.0 1x
1.0.0		 Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA true
Azure SQL Managed Instances should have Microsoft Entra-only authentication enabled during creation 78215662-041e-49ed-a9dd-5385911b3a1f SQL 1.2.0 2x
1.2.0, 1.1.0		 Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA true
Roles used No Roles used
History
Date/Time (UTC ymd) (i) Changes
2024-01-29 19:36:15 add Initiative 9b8d8228-e8cc-4c95-8d98-47f32df40b5e
JSON compare n/a
JSON
api-version=2023-04-01
EPAC