Plugin Title Server Auditing Enabled
Cloud AZURE
Category SQL Servers
Description Ensures that SQL Server Auditing is enabled for SQL servers
More Info Enabling SQL Server Auditing ensures that all activities are being logged properly, including potentially-malicious activity.
AWS Link https://docs.microsoft.com/en-us/azure/sql-database/sql-database-auditing
Recommended Action Ensure that auditing is enabled for each SQL server.


Detailed Remediation Steps

  1. Log into the Microsoft Azure Management Console.
  2. Select the "Search resources, services, and docs" option at the top and search for SQL servers.
  3. On the "SQL server" page, select the SQL server that needs to be examine.
  4. On the selected "SQL server" page, scroll down the left navigation panel and select "Auditing" under the "Security."
  5. On the "Auditing configuration page", verify the "Auditing" staus. If it's set to "OFF" then "SQL Server Auditing" is not enabled for the selected "SQL server."
  6. Repeat steps number 2 - 5 to verify other "SQL servers" in the account.
  7. Navigate to "SQL servers", on the "SQL servers" page select the "SQL server", scroll down the left navigation panel and choose "Auditing" under the "Security."
  8. On the "Auditing configuration page", click on the "ON" option next to "Auditing" and "Save" the changes.
  9. Repeat steps number 7 - 8 to ensure that auditing is enabled for each SQL server.

Want to scan for this risk automatically?

Get Started Now