• Azure SQL

Monitor your AZURE SQL resources for best practices.

Security

Short Auditing Retention Period for SQL Servers
Auditing retention period should be greater than defined days. Default 90 days.

Auditing Disabled for SQL Servers
Enable auditing for all SQL Servers.

Threat Detection Disabled for SQL Servers
Enable threat detection for all SQL servers.

Threat Detection Alerts Disabled for SQL Servers
Do not disable alerts related to threat detections.

"Send Threat Detection Alerts" Disabled for SQL Servers
Specify email addresses and ensure that alerts are sent to them.

Short Threat Detection Retention Period for SQL Servers
Set an Azure Active Directory admin for every SQL server.

Short Auditing Retention Period for SQL Databases
Auditing retention period should be greater than defined days. Default 90 days.

Auditing Disabled for SQL Databases
Enable auditing for all SQL Databases.

Threat Detection Disabled for SQL Databases
Enable threat detection for all SQL Databases.

Threat Detection Alerts Disabled for SQL Databases
Enable alerts related to threat detections.

"Send Threat Detection Alerts" Disabled for SQL Databases
Specify email addresses and ensure that alerts are sent to them.

Reliability

Short Threat Detection Retention Period for SQL Servers
Threat detection retention period should be greater than defined days. Default 90 days.

Short Threat Detection Retention Period for SQL Databases
Threat detection retention period should be greater than defined days. Default 90 days.

Transparent Data Encryption Disabled for SQL Databases
Enable transparent data encryption for all SQL databases.

Sources

https://www.cloudanix.com/recipelist/azure/azuresqlaudit

Help Us Improve!

If you have any suggestions to improve this checklist, please let us know by filling out this form.