4. Database Services
Description: Enabling auditing on SQL Server records database activities and stores them in a log destination such as a Storage Account, Log Analytics work...
Sat, 27 Dec, 2025 at 11:49 AM
Description: Azure SQL Database uses Transparent Data Encryption (TDE) to protect data at rest by automatically encrypting the database, backups, and trans...
Sat, 27 Dec, 2025 at 12:09 PM
Description: SQL Server auditing should be configured with a retention period greater than 90 days to ensure that sufficient audit data is available for mo...
Sat, 27 Dec, 2025 at 12:05 PM
Description: Enable "Azure Defender for SQL" on critical SQL Servers. Advanced Threat Protection (ATP) on a SQL server is set to 'Enabled'...
Thu, 28 Oct, 2021 at 12:31 AM
Description: Azure SQL Vulnerability Assessment scans SQL servers and their databases for security risks, configuration issues, and deviations from best pr...
Sat, 27 Dec, 2025 at 12:12 PM
Description: Enable Vulnerability Assessment (VA) Periodic recurring scans for critical SQL servers and corresponding SQL databases. Rationale: VA settin...
Thu, 28 Oct, 2021 at 12:33 AM
Description: Azure Database for PostgreSQL supports encrypted connections using SSL or TLS. Enabling Enforce SSL Connection ensures that all client traffic...
Wed, 31 Dec, 2025 at 2:54 AM
Description: Configure 'Send scan reports to' with email ids of concerned data owners/stakeholders for a critical SQL servers. Rationale: Vulnera...
Thu, 28 Oct, 2021 at 12:38 AM
Description: Enable Vulnerability Assessment (VA) setting 'Also send email notifications to admins and subscription owners'. Rationale: VA scan r...
Thu, 28 Oct, 2021 at 12:35 AM
Description: TDE with Customer-managed key support provides increased transparency and control over the TDE Protector, increased security with an HSM-backe...
Tue, 22 Aug, 2023 at 5:05 AM