last sync: 2024-Apr-24 17:47:19 UTC

Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameConfigure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace
Idd7c3ea3a-edf3-4bd5-bd64-d5b635b05393
Version1.2.1
Details on versioning
CategorySecurity Center
Microsoft Learn
DescriptionMicrosoft Defender for SQL collects events from the agents and uses them to provide security alerts and tailored hardening tasks (recommendations). Creates a resource group and a Data Collection Rule and Log Analytics workspace in the same region as the machine.
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 9
Builtin Policies: 9
Static Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State
Configure Arc-enabled SQL Servers to automatically install Azure Monitor Agent 3592ff98-9787-443a-af59-4505d0fe0786 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Azure Connected Machine Resource Administrator GA
Configure Arc-enabled SQL Servers to automatically install Microsoft Defender for SQL 65503269-6a54-4553-8a28-0065a8e6d929 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Log Analytics Contributor GA
Configure Arc-enabled SQL Servers to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace da0fd392-9669-4ad4-b32c-ca46aaa6c21f Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Contributor GA
Configure Arc-enabled SQL Servers with Data Collection Rule Association to Microsoft Defender for SQL DCR cbdd12e1-193a-445c-9926-560118c6daaa Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
2 Log Analytics Contributor, Monitoring Contributor GA
Configure SQL Virtual Machines to automatically install Azure Monitor Agent f91991d1-5383-4c95-8ee5-5ac423dd8bb1 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Virtual Machine Contributor GA
Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL ddca0ddc-4e9d-4bbb-92a1-f7c4dd7ef7ce Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
2 Log Analytics Contributor, Monitoring Contributor GA
Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace c859b78a-a128-4376-a838-e97ce6625d16 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Contributor GA
Configure the Microsoft Defender for SQL Log Analytics workspace 242300d6-1bfc-4d64-8d01-cee583709ebd Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Contributor GA
Create and assign a built-in user-assigned managed identity 09963c90-6ee7-4215-8d26-1cc660a1682f Security Center Default
DeployIfNotExists
Allowed
AuditIfNotExists, DeployIfNotExists, Disabled
1 Contributor GA
Roles used Total Roles usage: 11
Total Roles unique usage: 5
Role Role Id Policies count Policies
Virtual Machine Contributor 9980e02c-c2be-4d73-94e8-173b1dc7cf3c 1 Configure SQL Virtual Machines to automatically install Azure Monitor Agent
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c 4 Configure Arc-enabled SQL Servers to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace, Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL and DCR with a Log Analytics workspace, Configure the Microsoft Defender for SQL Log Analytics workspace, Create and assign a built-in user-assigned managed identity
Monitoring Contributor 749f88d5-cbae-40b8-bcfc-e573ddc772fa 2 Configure Arc-enabled SQL Servers with Data Collection Rule Association to Microsoft Defender for SQL DCR, Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293 3 Configure Arc-enabled SQL Servers to automatically install Microsoft Defender for SQL, Configure Arc-enabled SQL Servers with Data Collection Rule Association to Microsoft Defender for SQL DCR, Configure SQL Virtual Machines to automatically install Microsoft Defender for SQL
Azure Connected Machine Resource Administrator cd570a14-e51a-42ad-bac8-bafd67325302 1 Configure Arc-enabled SQL Servers to automatically install Azure Monitor Agent
History
Date/Time (UTC ymd) (i) Changes
2023-11-22 19:18:10 Version change: '1.2.0-preview' to '1.2.1'
Name change: '[Preview]: Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace' to 'Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace'
2023-09-18 18:02:04 Description change: 'Configure machines to automatically install the Azure Monitor and Microsoft Defender for SQL agents. Microsoft Defender for SQL collects events from the agents and uses them to provide security alerts and tailored hardening tasks (recommendations). Create a resource group, a Data Collection Rule and Log Analytics workspace in the same region as the machine to store audit records.' to 'Microsoft Defender for SQL collects events from the agents and uses them to provide security alerts and tailored hardening tasks (recommendations). Creates a resource group and a Data Collection Rule and Log Analytics workspace in the same region as the machine.'
Name change: '[Preview]: Configure machines to create the default Microsoft Defender for SQL pipeline using Azure Monitor Agent' to '[Preview]: Configure SQL VMs and Arc-enabled SQL Servers to install Microsoft Defender for SQL and AMA with a LA workspace'
2023-09-14 17:58:18 Version change: '1.1.0-preview' to '1.2.0-preview'
2023-08-25 17:58:14 add Initiative d7c3ea3a-edf3-4bd5-bd64-d5b635b05393
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC