Azure Defender should be enabled for SQL Servers

Description

Azure Defender for SQL Servers monitors your database for advanced SQL injection attempts, unusual access patterns, brute force attacks, suspicious activity, anomalous database access, and other database vulnerabilities.

Remediation Steps

Azure Portal

• Navigate to Security Center.

• In the left navigation, select Pricing & Settings.

• Select the Subscription Name.

• In the left navigation, select Azure Defender plans.

• Verify that Azure Defender is on.

• In the table under SQL Database, select On.

• Click Save.

Azure CLI

Remediation is not possible via the CLI.

Documentation Links

Azure Portal and CLI

• Azure Defender for SQL

• Ensure that Azure Defender is set to On for Azure SQL database servers