AzInitiativeAdvertizer

last sync: 2021-Oct-15 16:53:14 UTC

Azure Policy Initiative

Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances

Name Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances
Azure Portal

Id 9cb3cc7a-b39b-4b82-bc89-e5a5d9ff7b97

Version 2.0.0
details on versioning

Category Security Center
Microsoft docs

Description Enable Azure Defender on your SQL Servers and SQL Managed Instances to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.

Type BuiltIn

Deprecated False

Preview False

History

Date/Time (UTC ymd) (i)	Changes
2021-08-12 19:47:01	add Policy Configure Azure Defender to be enabled on SQL managed instances (c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd) Name change: '[Preview]: Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances' to 'Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances'
2021-08-11 15:29:42	Description change: 'Enable data protection for SQL servers. This initiative is assigned automatically by Azure Security Center Standard Tier.' to 'Enable Azure Defender on your SQL Servers and SQL Managed Instances to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.' Name change: '[Preview]: Enable Data Protection Suite' to '[Preview]: Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances'

Policy count Total Policies: 2
Builtin Policies: 2
Static Policies: 0

Policy used

Policy DisplayName	Policy Id	Category	Effect	State
Configure Azure Defender to be enabled on SQL managed instances	c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd	SQL	Default: DeployIfNotExists Allowed: (DeployIfNotExists, Disabled)	GA
Configure Azure Defender to be enabled on SQL servers	36d49e87-48c4-4f2e-beed-ba4ed02b71f5	SQL	Fixed: DeployIfNotExists	GA

JSON

{
  "displayName": "Configure Azure Defender to be enabled on SQL Servers and SQL Managed Instances",
  "policyType": "BuiltIn",
  "description": "Enable Azure Defender on your SQL Servers and SQL Managed Instances to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.",
  "metadata": {
    "version": "2.0.0",
    "category": "Security Center"
  },
  "parameters": {},
  "policyDefinitions": [
    {
      "policyDefinitionReferenceId": "deployThreatDetectionOnSqlServers",
      "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/36d49e87-48c4-4f2e-beed-ba4ed02b71f5",
      "parameters": {}
    },
    {
      "policyDefinitionReferenceId": "deployThreatDetectionOnSqlManagedInstances",
      "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/c5a62eb0-c65a-4220-8a4d-f70dd4ca95dd",
      "parameters": {}
    }
  ]
}