Table: azure_compute_disk_access - Query Azure Compute Disk Accesses using SQL
Azure Compute Disk Access is a feature within Microsoft Azure that enables granular access control to managed disks. It provides a secure way to authorize specific virtual machines to access specific managed disks. Azure Compute Disk Access enhances the security and management of your Azure resources by controlling access at the disk level.
Table Usage Guide
The azure_compute_disk_access table provides insights into disk access configurations within Azure Compute. As a Security Analyst, explore disk access-specific details through this table, including access locations, permissions, and associated virtual machines. Utilize it to uncover information about disk accesses, such as those with specific permissions, the relationships between disk accesses and virtual machines, and the verification of access policies.
Examples
Basic info
Explore the fundamental details of your Azure disk access resources to understand their status and organization. This can help in managing resources and ensuring optimal utilization.
select name, id, type, provisioning_state, resource_groupfrom azure_compute_disk_access;select name, id, type, provisioning_state, resource_groupfrom azure_compute_disk_access;List failed disk accesses
Explore which disk accesses in your Azure Compute resource have failed. This is beneficial for identifying potential issues with your resources and taking necessary corrective actions.
select name, id, type, provisioning_state, resource_groupfrom azure_compute_disk_accesswhere provisioning_state = 'Failed';select name, id, type, provisioning_state, resource_groupfrom azure_compute_disk_accesswhere provisioning_state = 'Failed';Control examples
Schema for azure_compute_disk_access
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form. | |
| akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. | |
| cloud_environment | text | The Azure Cloud Environment. | |
| id | text | The resource identifier. | |
| name | text | = | The resource name. |
| private_endpoint_connections | jsonb | The private endpoint connections details. | |
| provisioning_state | text | The disk access resource provisioning state. | |
| region | text | The Azure region/location in which the resource is located. | |
| resource_group | text | = | The resource group which holds this resource. |
| sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
| sp_ctx | jsonb | Steampipe context in JSON form. | |
| subscription_id | text | =, !=, ~~, ~~*, !~~, !~~* | The Azure Subscription ID in which the resource is located. |
| tags | jsonb | A map of tags for the resource. | |
| time_created | timestamp with time zone | The time when the disk access was created. | |
| title | text | Title of the resource. | |
| type | text | The resource type. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- azureYou can pass the configuration to the command with the --config argument:
steampipe_export_azure --config '<your_config>' azure_compute_disk_access