Free Assessment

Azure_SQLServers_15

Avoid using names like 'Admin' for an Azure SQL Server admin account login

Description

You must designate a Server admin login when you create an Azure SQL server. SQL server creates this account as a login in the master database. Only one such account can exist. This account connects using SQL Server authentication (username and password). It is recommended to avoid using names like ‘admin’ or ‘administrator’, which are targeted in brute force dictionary attacks.

Remediation

This is set when the SQL Server is created. After created, only using external tools connected to the SQL Server, such as SSMS, can be used to alter the user, but it will not change the value in the Portal.

References:

  1.  https://docs.microsoft.com/en-us/azure/sql-database/sql-database-manage-logins

Service

Database Services

Severity

Medium

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More