Free Assessment

Azure_SQLServers_5

Ensure that Threat Detection types is set to ' All '

Description

Enable all types of threat detection on SQL servers.

Remediation

Perform the following in the Azure Console:

  1. Go to SQL servers
  2. For each server instance
  3. Click on Advanced Data Security
  4. At section Threat Detection Settings, Set Threat Detection types to All

Perform the following in Azure PowerShell:

For each Server, set ExcludedDetectionTypes to None.

Set-AzureRmSqlServerThreatDetectionPolicy -ResourceGroupName <resource groupname> -ServerName <server name> -ExcludedDetectionType None

References:

  1. https://docs.microsoft.com/en-us/azure/sql-database/sql-advanced-threat-protection
  2. https://docs.microsoft.com/cs-cz/powershell/module/azurerm.sql/get-azurermsqlserverthreatdetectionpolicy?view=azurermps-5.2.0
  3. https://docs.microsoft.com/en-us/powershell/module/azurerm.sql/set-azurermsqlserverthreatdetectionpolicy?view=azurermps-5.2.0

Service

Database Services

Severity

High

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More