azure_ad_groupazure_ad_service_principalazure_ad_userazure_api_managementazure_app_configurationazure_app_service_environmentazure_app_service_function_appazure_app_service_planazure_app_service_web_appazure_application_gatewayazure_application_security_groupazure_batch_accountazure_cognitive_accountazure_compute_availability_setazure_compute_diskazure_compute_disk_accessazure_compute_disk_encryption_setazure_compute_disk_metric_read_opsazure_compute_disk_metric_read_ops_dailyazure_compute_disk_metric_read_ops_hourlyazure_compute_disk_metric_write_opsazure_compute_disk_metric_write_ops_dailyazure_compute_disk_metric_write_ops_hourlyazure_compute_imageazure_compute_resource_skuazure_compute_snapshotazure_compute_virtual_machineazure_compute_virtual_machine_metric_cpu_utilizationazure_compute_virtual_machine_metric_cpu_utilization_dailyazure_compute_virtual_machine_metric_cpu_utilization_hourlyazure_compute_virtual_machine_scale_setazure_compute_virtual_machine_scale_set_vmazure_container_registryazure_cosmosdb_accountazure_cosmosdb_mongo_databaseazure_cosmosdb_sql_databaseazure_data_factoryazure_data_factory_datasetazure_data_factory_pipelineazure_data_lake_analytics_accountazure_data_lake_storeazure_databox_edge_deviceazure_diagnostic_settingazure_eventgrid_domainazure_eventgrid_topicazure_eventhub_namespaceazure_express_route_circuitazure_firewallazure_frontdoorazure_hdinsight_clusterazure_healthcare_serviceazure_hpc_cacheazure_hybrid_compute_machineazure_hybrid_kubernetes_connected_clusterazure_iothubazure_iothub_dpsazure_key_vaultazure_key_vault_deleted_vaultazure_key_vault_keyazure_key_vault_managed_hardware_security_moduleazure_key_vault_secretazure_kubernetes_clusterazure_kusto_clusterazure_lbazure_lb_backend_address_poolazure_lb_nat_ruleazure_lb_outbound_ruleazure_lb_probeazure_lb_ruleazure_locationazure_log_alertazure_log_profileazure_logic_app_workflowazure_machine_learning_workspaceazure_management_groupazure_management_lockazure_mariadb_serverazure_mssql_elasticpoolazure_mssql_managed_instanceazure_mssql_virtual_machineazure_mysql_flexible_serverazure_mysql_serverazure_network_interfaceazure_network_security_groupazure_network_watcherazure_network_watcher_flow_logazure_policy_assignmentazure_policy_definitionazure_postgresql_serverazure_providerazure_public_ipazure_recovery_services_vaultazure_redis_cacheazure_resource_groupazure_resource_linkazure_role_assignmentazure_role_definitionazure_route_tableazure_search_serviceazure_security_center_auto_provisioningazure_security_center_automationazure_security_center_contactazure_security_center_jit_network_access_policyazure_security_center_settingazure_security_center_sub_assessmentazure_security_center_subscription_pricingazure_service_fabric_clusterazure_servicebus_namespaceazure_signalr_serviceazure_spring_cloud_serviceazure_sql_databaseazure_sql_serverazure_storage_accountazure_storage_blobazure_storage_blob_serviceazure_storage_containerazure_storage_queueazure_storage_share_fileazure_storage_syncazure_storage_tableazure_storage_table_serviceazure_stream_analytics_jobazure_subnetazure_subscriptionazure_synapse_workspaceazure_tenantazure_virtual_networkazure_virtual_network_gatewayindex
Table: azure_sql_server
An Azure SQL server is a relational database management system. As a database server, it is a software product with the primary function of storing and retrieving data as requested by other software applications—which may run either on the same computer or on another computer across a network (including the Internet).
Examples
List servers that have auditing disabled
select name, id, audit -> 'properties' ->> 'state' as audit_policy_statefrom azure_sql_server, jsonb_array_elements(server_audit_policy) as auditwhere audit -> 'properties' ->> 'state' = 'Disabled';
List servers with an audit log retention period less than 90 days
select name, id, (audit -> 'properties' ->> 'retentionDays')::integer as audit_policy_retention_daysfrom azure_sql_server, jsonb_array_elements(server_audit_policy) as auditwhere (audit -> 'properties' ->> 'retentionDays')::integer < 90;
List servers that have advanced data security disabled
select name, id, security -> 'properties' ->> 'state' as security_alert_policy_statefrom azure_sql_server, jsonb_array_elements(server_security_alert_policy) as securitywhere security -> 'properties' ->> 'state' = 'Disabled';
List servers that have Advanced Threat Protection types set to All
select name, id, security -> 'properties' -> 'disabledAlerts' as security_alert_policy_statefrom azure_sql_server, jsonb_array_elements(server_security_alert_policy) as security, jsonb_array_elements_text(security -> 'properties' -> 'disabledAlerts') as disabled_alerts, jsonb_array_length(security -> 'properties' -> 'disabledAlerts') as alert_lengthwhere alert_length = 1 and disabled_alerts = '';
List servers that do not have an Active Directory admin set
select name, idfrom azure_sql_serverwhere server_azure_ad_administrator is null;
List servers for which TDE protector is encrypted with the service-managed key
select name, id, encryption ->> 'kind' as encryption_protector_kindfrom azure_sql_server, jsonb_array_elements(encryption_protector) as encryptionwhere encryption ->> 'kind' = 'servicemanaged';
Query examples
- azure_sql_server_ad_authentication_enabled
- azure_sql_server_audit_policy
- azure_sql_server_auditing_disabled_count
- azure_sql_server_auditing_enabled
- azure_sql_server_azure_ad_authentication_disabled_count
- azure_sql_server_by_encryption_type
- azure_sql_server_by_kind
- azure_sql_server_by_region
- azure_sql_server_by_state
- azure_sql_server_by_subscription
- azure_sql_server_count
- azure_sql_server_customer_managed_encryption_count
- azure_sql_server_default_encrypted_servers_count
- azure_sql_server_encryption
- azure_sql_server_private_endpoint_connection
- azure_sql_server_public_count
- azure_sql_server_public_network_access
- azure_sql_server_state
- azure_sql_server_tags
- azure_sql_server_version
- azure_sql_server_virtual_network_rules
- azure_sql_server_vulnerability_assessment
- azure_sql_server_vulnerability_assessment_disabled_count
- azure_sql_server_vulnerability_assessment_enabled
Control examples
- sql_server_mandatory
- sql_server_prohibited
- sql_server_tag_limit
- sql_server_untagged
- azure_sql_server_ad_authentication_status
- azure_sql_server_auditing_status
- azure_sql_server_by_resource_group
- azure_sql_server_encryption_report
- azure_sql_server_input
- azure_sql_server_overview
- azure_sql_server_private_link_status
- azure_sql_server_public_status
- azure_sql_server_vulnerability_assessment_status
- sql_database_allow_internet_access
- sql_db_active_directory_admin_configured
- sql_db_public_network_access_disabled
- sql_server_and_databases_va_enabled
- sql_server_atp_enabled
- sql_server_auditing_on
- sql_server_auditing_retention_period_90
- sql_server_auditing_storage_account_destination_retention_90_days
- sql_server_azure_ad_authentication_enabled
- sql_server_azure_defender_enabled
- sql_server_tde_protector_cmk_encrypted
- sql_server_use_virtual_service_endpoint
- sql_server_uses_private_link
- sql_server_va_setting_periodic_scan_enabled
- sql_server_va_setting_reports_notify_admins
- sql_server_va_setting_scan_reports_configured
.inspect azure_sql_server
Azure SQL Server
Name | Type | Description |
---|---|---|
_ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. |
administrator_login | text | Specifies the username of the administrator for this server. |
administrator_login_password | text | The administrator login password. |
akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. |
cloud_environment | text | The Azure Cloud Environment. |
encryption_protector | jsonb | The server encryption protector. |
firewall_rules | jsonb | A list of firewall rules fro this server. |
fully_qualified_domain_name | text | The fully qualified domain name of the server. |
id | text | Contains ID to identify a SQL server uniquely. |
kind | text | The Kind of sql server. |
location | text | The resource location. |
minimal_tls_version | text | Minimal TLS version. Allowed values: '1.0', '1.1', '1.2'. |
name | text | The friendly name that identifies the SQL server. |
private_endpoint_connections | jsonb | The private endpoint connections of the sql server. |
public_network_access | text | Whether or not public endpoint access is allowed for this server. |
region | text | The Azure region/location in which the resource is located. |
resource_group | text | The resource group which holds this resource. |
server_audit_policy | jsonb | Specifies the audit policy configuration for server. |
server_azure_ad_administrator | jsonb | Specifies the active directory administrator. |
server_security_alert_policy | jsonb | Specifies the security alert policy configuration for server. |
server_vulnerability_assessment | jsonb | Specifies the server's vulnerability assessment. |
state | text | The state of the server. |
subscription_id | text | The Azure Subscription ID in which the resource is located. |
tags | jsonb | A map of tags for the resource. |
tags_src | jsonb | Specifies the set of tags attached to the server. |
title | text | Title of the resource. |
type | text | The resource type of the SQL server. |
version | text | The version of the server. |
virtual_network_rules | jsonb | A list of virtual network rules for this server. |