Policy: Azure > SQL > Database > Advanced Data Security
Define the advanced data security settings required for Azure > SQL > Database.
Advanced data security for SQL Database includes functionality for surfacing and mitigating potential database vulnerabilities and detecting anomalous activities that could indicate a threat to your database. The Advanced data security package provides administrators with a single go-to location for discovering and classifying data, assessing and addressing potential database vulnerabilities, and visibility into anomalous and potentially malicious activity that is taking place.
Data security can be defined for a specific database or as a default server policy. A server policy applies to all existing and newly created databases on the server. Azure recommends to enable only server-level data security and leave the database-level data security disabled for all databases.
The Advanced data security control compares the vulnerability assessment and threat protection settings against the advanced data security policies for the resource (Azue > SQL > Database > Advanced Data Security > *), raises an alarm, and takes the defined enforcement action
Resource Types
This policy targets the following resource types:
Related Policies
Controls
Policy Specification
Schema Type | |
|---|---|
Default | |
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/other
- tmod:@turbot/azure-sql#/policy/types/databaseDataSecurity
- turbot graphql policy-type --id "tmod:@turbot/azure-sql#/policy/types/databaseDataSecurity"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-sql#/policy/types/databaseDataSecurity"
Get Policy TypeGet Policy Settings