Aqua CSPM

Server Auditing Enabled

Quick Info

Plugin TitleServer Auditing Enabled
CloudAZURE
CategorySQL Servers
DescriptionEnsures that SQL Server Auditing is enabled for SQL servers
More InfoEnabling SQL Server Auditing ensures that all activities are being logged properly, including potentially-malicious activity.
AZURE Linkhttps://docs.microsoft.com/en-us/azure/sql-database/sql-database-auditing
Recommended ActionEnsure that auditing is enabled for each SQL server.

Detailed Remediation Steps

  1. Log into the Microsoft Azure Management Console.
  2. Select the “Search resources, services, and docs” option at the top and search for SQL servers.
  3. On the “SQL server” page, select the SQL server that needs to be examine.
  4. On the selected “SQL server” page, scroll down the left navigation panel and select “Auditing” under the “Security."
  5. On the “Auditing configuration page”, verify the “Auditing” staus. If it’s set to “OFF” then “SQL Server Auditing” is not enabled for the selected “SQL server.”
  6. Repeat steps number 2 - 5 to verify other “SQL servers” in the account.
  7. Navigate to “SQL servers”, on the “SQL servers” page select the “SQL server”, scroll down the left navigation panel and choose “Auditing” under the “Security."
  8. On the “Auditing configuration page”, click on the “ON” option next to “Auditing” and “Save” the changes.
  9. Repeat steps number 7 - 8 to ensure that auditing is enabled for each SQL server.