AzInitiativeAdvertizer

last sync: 2024-Jul-26 18:18:00 UTC

[Deprecated]: Deploy SQL Database built-in SQL security configuration

Azure Landing Zones (ALZ) Policy Initiative (PolicySet)

Source

Repository Azure Landing Zones (ALZ) GitHub
JSON Deploy-Sql-Security

Display name

[Deprecated]: Deploy SQL Database built-in SQL security configuration

Deploy-Sql-Security

Version

1.0.0-deprecated
Details on versioning

Category

SQL

Description

Deploy auditing, Alert, TDE and SQL vulnerability to SQL Databases when it not exist in the deployment. Superseded by https://www.azadvertizer.net/azpolicyinitiativesadvertizer/Deploy-Sql-Security_20240529.html

Type

Custom Azure Landing Zones (ALZ)

Deprecated

True

Preview

False

SupersededBy

This ALZ PolicySet definition is superseded by Deploy SQL Database built-in SQL security configuration (Deploy-Sql-Security_20240529) Custom Azure Landing Zones (ALZ)
More information on Azure Landing Zones deprecated Policy and PolicySet definitions

Policy count

Total Policies: 4
Builtin Policies: 1
Static Policies: 0
ALZ Policies: 3

Policy used

Policy DisplayName	Policy Id	Category	Effect	Roles#	Roles	State	Type
[Deprecated]: Deploy SQL Database vulnerability Assessments	Deploy-Sql-vulnerabilityAssessments	SQL	Default DeployIfNotExists Allowed DeployIfNotExists, Disabled	3	Monitoring Contributor, SQL Security Manager, Storage Account Contributor	Deprecated	ALZ
Deploy SQL database auditing settings	Deploy-Sql-AuditingSettings	SQL	Default DeployIfNotExists Allowed DeployIfNotExists, Disabled	1	SQL Security Manager	GA	ALZ
Deploy SQL Database security Alert Policies configuration with email admin accounts	Deploy-Sql-SecurityAlertPolicies	SQL	Default DeployIfNotExists Allowed DeployIfNotExists, Disabled	1	SQL Security Manager	GA	ALZ
Deploy SQL DB transparent data encryption	86a912f6-9a06-4e26-b447-11b16ba8659f	SQL	Default DeployIfNotExists Allowed DeployIfNotExists, Disabled	1	SQL DB Contributor	GA	BuiltIn

Roles used

Total Roles usage: 6
Total Roles unique usage: 4

Role	Role Id	Policies count	Policies
SQL Security Manager	056cd41c-7e88-42e1-933e-88ba6a50c9c3	3	[Deprecated]: Deploy SQL Database vulnerability Assessments, Deploy SQL database auditing settings, Deploy SQL Database security Alert Policies configuration with email admin accounts
SQL DB Contributor	9b7fa17d-e63e-47b0-bb0a-15c516ac86ec	1	Deploy SQL DB transparent data encryption
Monitoring Contributor	749f88d5-cbae-40b8-bcfc-e573ddc772fa	1	[Deprecated]: Deploy SQL Database vulnerability Assessments
Storage Account Contributor	17d1049b-9a84-46fb-8f53-869881c3d3ab	1	[Deprecated]: Deploy SQL Database vulnerability Assessments

History

none

JSON compare

compare mode: version left: version right:

JSON

EPAC