Free Assessment

Azure_SQLServers_3

Ensure that Auditing ' Retention is ' greater than 90 days '

Description

SQL Server Audit Retention should be configured to be greater than 90 days.

Remediation

Perform the following in the Azure Console:

  1. Go to SQL servers
  2. For each server instance
  3. Click on Auditing
  4. Select Storage Details
  5. Set Retention (days) setting greater than 90 days
  6. Select OK
  7. Select Save

Perform the following in Azure PowerShell:

For each Server, set retention policy for more than or equal to 90 days.

set-AzureRmSqlServerAuditing -ResourceGroupName <resource group name> -ServerName <server name> -RetentionInDays <Number of Days to retain the auditlogs, should be 90days minimum>

References:

  1. https://docs.microsoft.com/en-us/powershell/module/azurerm.sql/get-azurermsqlserverauditing?view=azurermps-5.2.0
  2. https://docs.microsoft.com/en-us/powershell/module/azurerm.sql/set-azurermsqlserverauditingpolicy?view=azurermps-5.2.0
  3. https://docs.microsoft.com/en-us/azure/sql-database/sql-database-auditing

Service

Database Services

Severity

Medium

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More