Policy: Azure > SQL > Database > Advanced Data Security

Define the advanced data security settings required for Azure > SQL > Database.

Advanced data security for SQL Database includes functionality for surfacing and mitigating potential database vulnerabilities and detecting anomalous activities that could indicate a threat to your database. The Advanced data security package provides administrators with a single go-to location for discovering and classifying data, assessing and addressing potential database vulnerabilities, and visibility into anomalous and potentially malicious activity that is taking place.

Data security can be defined for a specific database or as a default server policy. A server policy applies to all existing and newly created databases on the server. Azure recommends to enable only server-level data security and leave the database-level data security disabled for all databases.

The Advanced data security control compares the vulnerability assessment and threat protection settings against the advanced data security policies for the resource (Azue > SQL > Database > Advanced Data Security > *), raises an alarm, and takes the defined enforcement action