azure_ad_groupazure_ad_service_principalazure_ad_userazure_alert_managementazure_api_managementazure_app_configurationazure_app_service_environmentazure_app_service_function_appazure_app_service_planazure_app_service_web_appazure_app_service_web_app_slotazure_application_gatewayazure_application_insightazure_application_security_groupazure_automation_accountazure_automation_variableazure_bastion_hostazure_batch_accountazure_cognitive_accountazure_compute_availability_setazure_compute_diskazure_compute_disk_accessazure_compute_disk_encryption_setazure_compute_disk_metric_read_opsazure_compute_disk_metric_read_ops_dailyazure_compute_disk_metric_read_ops_hourlyazure_compute_disk_metric_write_opsazure_compute_disk_metric_write_ops_dailyazure_compute_disk_metric_write_ops_hourlyazure_compute_imageazure_compute_resource_skuazure_compute_snapshotazure_compute_ssh_keyazure_compute_virtual_machineazure_compute_virtual_machine_metric_cpu_utilizationazure_compute_virtual_machine_metric_cpu_utilization_dailyazure_compute_virtual_machine_metric_cpu_utilization_hourlyazure_compute_virtual_machine_scale_setazure_compute_virtual_machine_scale_set_network_interfaceazure_compute_virtual_machine_scale_set_vmazure_container_groupazure_container_registryazure_cosmosdb_accountazure_cosmosdb_mongo_collectionazure_cosmosdb_mongo_databaseazure_cosmosdb_restorable_database_accountazure_cosmosdb_sql_databaseazure_data_factoryazure_data_factory_datasetazure_data_factory_pipelineazure_data_lake_analytics_accountazure_data_lake_storeazure_databox_edge_deviceazure_databricks_workspaceazure_diagnostic_settingazure_dns_zoneazure_eventgrid_domainazure_eventgrid_topicazure_eventhub_namespaceazure_express_route_circuitazure_firewallazure_firewall_policyazure_frontdoorazure_hdinsight_clusterazure_healthcare_serviceazure_hpc_cacheazure_hybrid_compute_machineazure_hybrid_kubernetes_connected_clusterazure_iothubazure_iothub_dpsazure_key_vaultazure_key_vault_deleted_vaultazure_key_vault_keyazure_key_vault_key_versionazure_key_vault_managed_hardware_security_moduleazure_key_vault_secretazure_kubernetes_clusterazure_kubernetes_service_versionazure_kusto_clusterazure_lbazure_lb_backend_address_poolazure_lb_nat_ruleazure_lb_outbound_ruleazure_lb_probeazure_lb_ruleazure_locationazure_log_alertazure_log_profileazure_logic_app_workflowazure_machine_learning_workspaceazure_management_groupazure_management_lockazure_mariadb_serverazure_monitor_activity_log_eventazure_mssql_elasticpoolazure_mssql_managed_instanceazure_mssql_virtual_machineazure_mysql_flexible_serverazure_mysql_serverazure_nat_gatewayazure_network_interfaceazure_network_security_groupazure_network_watcherazure_network_watcher_flow_logazure_policy_assignmentazure_policy_definitionazure_postgresql_flexible_serverazure_postgresql_serverazure_private_dns_zoneazure_providerazure_public_ipazure_recovery_services_backup_jobazure_recovery_services_vaultazure_redis_cacheazure_resource_groupazure_resource_linkazure_role_assignmentazure_role_definitionazure_route_tableazure_search_serviceazure_security_center_auto_provisioningazure_security_center_automationazure_security_center_contactazure_security_center_jit_network_access_policyazure_security_center_settingazure_security_center_sub_assessmentazure_security_center_subscription_pricingazure_service_fabric_clusterazure_servicebus_namespaceazure_signalr_serviceazure_spring_cloud_serviceazure_sql_databaseazure_sql_serverazure_storage_accountazure_storage_blobazure_storage_blob_serviceazure_storage_containerazure_storage_queueazure_storage_share_fileazure_storage_syncazure_storage_tableazure_storage_table_serviceazure_stream_analytics_jobazure_subnetazure_subscriptionazure_synapse_workspaceazure_tenantazure_virtual_networkazure_virtual_network_gateway
Table: azure_subscription
An Azure subscription is a logical container used to provision resources in Azure.
Examples
Basic info
select id, subscription_id, display_name, tenant_id, state, authorization_source, subscription_policiesfrom azure_subscription;
Query examples
- app_service_web_app_by_subscription
- compute_disk_by_subscription
- compute_disk_storage_by_subscription
- compute_snapshot_by_subscription
- compute_virtual_machine_by_subscription
- compute_virtual_machine_scale_set_by_subscription
- cosmosdb_account_by_subscription
- key_vault_by_subscription
- key_vault_key_by_subscription
- kubernetes_cluster_by_subscription
- network_express_route_circuit_by_subscription
- network_security_group_by_subscription
- sql_database_by_subscription
- sql_server_by_subscription
- subscription_count
- subscription_table
- torage_account_by_subscription
- virtual_network_by_subscription
Control examples
- compute_disk_attached_stopped_virtual_machine
- compute_disk_high_iops
- compute_disk_large
- compute_disk_low_usage
- compute_disk_snapshot_storage_standard
- compute_disk_unattached
- compute_snapshot_max_age
- compute_virtual_machine_long_running
- compute_virtual_machine_low_utilization
- network_public_ip_unattached
- sql_database_long_running_reserved_capacity
- storage_account_without_lifecycle_policy
- virtual_network_gateway_unused
- app_service_web_app_by_resource_group
- app_service_web_app_input
- compute_disk_age_table
- compute_disk_by_resource_group
- compute_disk_encryption_report
- compute_disk_input
- compute_disk_storage_by_resource_group
- compute_snapshot_age_table
- compute_snapshot_by_resource_group
- compute_snapshot_input
- compute_virtual_machine_by_resource_group
- compute_virtual_machine_input
- compute_virtual_machine_scale_set_by_resource_group
- compute_virtual_machine_scale_set_input
- compute_virtual_machine_scale_set_vm_input
- cosmosdb_account_by_resource_group
- cosmosdb_account_encryption_report
- cosmosdb_account_input
- cosmosdb_mongo_database_input
- key_vault_by_resource_group
- key_vault_input
- key_vault_key_age_table
- key_vault_key_by_resource_group
- key_vault_key_input
- kubernetes_cluster_by_resource_group
- kubernetes_cluster_input
- network_express_route_circuit_input
- network_firewall_input
- network_interface_input
- network_load_balancer_input
- network_public_ip_input
- network_security_group_by_resource_group
- network_security_group_input
- network_subnet_input
- sql_database_age_table
- sql_database_by_resource_group
- sql_database_input
- sql_server_by_resource_group
- sql_server_encryption_report
- sql_server_input
- storage_account_age_table
- storage_account_by_resource_group
- storage_account_input
- virtual_network_by_resource_group
- virtual_network_input
- apimanagement_service_client_certificate_enabled
- apimanagement_service_with_virtual_network
- app_configuration_encryption_enabled
- app_configuration_private_link_used
- app_configuration_sku_standard
- app_service_environment_internal_encryption_enabled
- application_gateway_waf_enabled
- appservice_api_app_client_certificates_on
- appservice_api_app_cors_no_star
- appservice_api_app_ftps_enabled
- appservice_api_app_latest_tls_version
- appservice_api_app_remote_debugging_disabled
- appservice_api_app_use_https
- appservice_api_app_uses_managed_identity
- appservice_authentication_enabled
- appservice_ftp_deployment_disabled
- appservice_function_app_client_certificates_on
- appservice_function_app_cors_no_star
- appservice_function_app_ftps_enabled
- appservice_function_app_latest_http_version
- appservice_function_app_latest_java_version
- appservice_function_app_latest_python_version
- appservice_function_app_latest_tls_version
- appservice_function_app_only_https_accessible
- appservice_function_app_remote_debugging_disabled
- appservice_function_app_uses_managed_identity
- appservice_plan_minimum_sku
- appservice_web_app_always_on
- appservice_web_app_client_certificates_on
- appservice_web_app_cors_no_star
- appservice_web_app_diagnostic_logs_enabled
- appservice_web_app_failed_request_tracing_enabled
- appservice_web_app_ftps_enabled
- appservice_web_app_health_check_enabled
- appservice_web_app_http_logs_enabled
- appservice_web_app_incoming_client_cert_on
- appservice_web_app_latest_dotnet_framework_version
- appservice_web_app_latest_http_version
- appservice_web_app_latest_java_version
- appservice_web_app_latest_php_version
- appservice_web_app_latest_python_version
- appservice_web_app_latest_tls_version
- appservice_web_app_register_with_active_directory_enabled
- appservice_web_app_remote_debugging_disabled
- appservice_web_app_slot_use_https
- appservice_web_app_use_https
- appservice_web_app_use_virtual_service_endpoint
- appservice_web_app_uses_managed_identity
- appservice_web_app_worker_more_than_one
- arc_compute_machine_linux_log_analytics_agent_installed
- arc_compute_machine_windows_log_analytics_agent_installed
- automation_account_variable_encryption_enabled
- batch_account_encrypted_with_cmk
- batch_account_logging_enabled
- cognitive_account_encrypted_with_cmk
- cognitive_account_private_link_used
- cognitive_account_public_network_access_disabled
- cognitive_account_restrict_public_access
- cognitive_service_local_auth_disabled
- compute_disk_access_uses_private_link
- compute_os_and_data_disk_encrypted_with_cmk
- compute_os_and_data_disk_encrypted_with_cmk_and_platform_managed
- compute_unattached_disk_encrypted_with_cmk
- compute_vm_account_with_password_linux
- compute_vm_and_sacle_set_encryption_at_host_enabled
- compute_vm_attached_with_network
- compute_vm_data_and_os_disk_uses_managed_disk
- compute_vm_disaster_recovery_enabled
- compute_vm_guest_configuration_installed
- compute_vm_guest_configuration_installed_linux
- compute_vm_guest_configuration_installed_windows
- compute_vm_guest_configuration_with_no_managed_identity
- compute_vm_guest_configuration_with_system_assigned_managed_identity
- compute_vm_guest_configuration_with_user_and_system_assigned_managed_identity
- compute_vm_jit_access_protected
- compute_vm_log_analytics_agent_installed
- compute_vm_log_analytics_agent_installed_windows
- compute_vm_malware_agent_automatic_upgrade_enabled
- compute_vm_malware_agent_installed
- compute_vm_max_password_age_70_days_windows
- compute_vm_meet_security_baseline_requirements_linux
- compute_vm_meet_security_baseline_requirements_windows
- compute_vm_min_password_age_1_day_windows
- compute_vm_min_password_length_14_windows
- compute_vm_network_traffic_data_collection_linux_agent_installed
- compute_vm_network_traffic_data_collection_windows_agent_installed
- compute_vm_password_complexity_setting_enabled_windows
- compute_vm_passwords_stored_using_reversible_encryption_windows
- compute_vm_remote_access_restricted
- compute_vm_remote_access_restricted_all_ports
- compute_vm_restrict_previous_24_passwords_resuse_windows
- compute_vm_restrict_remote_connection_from_accounts_without_password_linux
- compute_vm_scale_set_automatic_upgrade_enabled
- compute_vm_scale_set_log_analytics_agent_installed
- compute_vm_scale_set_logging_enabled
- compute_vm_scale_set_ssh_key_authentication_linux
- compute_vm_secure_communication_protocols_configured
- compute_vm_ssh_key_authentication_linux
- compute_vm_system_updates_installed
- compute_vm_tcp_udp_access_restricted_internet
- compute_vm_uses_azure_resource_manager
- compute_vm_utilizing_managed_disk
- compute_vm_vulnerability_assessment_solution_enabled
- compute_vm_windows_defender_exploit_guard_enabled
- container_instance_container_group_encrypted_using_cmk
- container_instance_container_group_in_virtual_network
- container_registry_admin_user_disabled
- container_registry_encrypted_with_cmk
- container_registry_geo_replication_enabled
- container_registry_public_network_access_disabled
- container_registry_quarantine_policy_enabled
- container_registry_restrict_public_access
- container_registry_retention_policy_enabled
- container_registry_trust_policy_enabled
- container_registry_use_virtual_service_endpoint
- container_registry_uses_private_link
- cosmosdb_account_encryption_at_rest_using_cmk
- cosmosdb_account_key_based_metadata_write_access_disabled
- cosmosdb_account_uses_private_link
- cosmosdb_account_virtual_network_filter_enabled
- cosmosdb_account_with_firewall_rules
- cosmosdb_use_virtual_service_endpoint
- data_factory_encrypted_with_cmk
- data_factory_public_network_access_disabled
- data_factory_uses_git_repository
- data_factory_uses_private_link
- databox_edge_device_double_encryption_enabled
- datalake_analytics_account_logging_enabled
- datalake_store_account_encryption_enabled
- datalake_store_account_logging_enabled
- eventgrid_domain_identity_provider_enabled
- eventgrid_domain_private_link_used
- eventgrid_domain_restrict_public_access
- eventgrid_topic_identity_provider_enabled
- eventgrid_topic_local_auth_enabled
- eventgrid_topic_private_link_used
- eventhub_namespace_cmk_encryption_enabled
- eventhub_namespace_logging_enabled
- eventhub_namespace_private_link_used
- eventhub_namespace_use_virtual_service_endpoint
- frontdoor_waf_enabled
- hdinsight_cluster_encrypted_at_rest_with_cmk
- hdinsight_cluster_encryption_at_host_enabled
- hdinsight_cluster_encryption_in_transit_enabled
- healthcare_fhir_azure_api_encrypted_at_rest_with_cmk
- healthcare_fhir_uses_private_link
- hpc_cache_encrypted_with_cmk
- iam_no_custom_role
- iam_no_custom_subscription_owner_roles_created
- iam_subscription_owner_max_3
- iam_subscription_owner_more_than_1
- iot_hub_logging_enabled
- iot_hub_private_link_used
- keyvault_key_expiration_set
- keyvault_logging_enabled
- keyvault_managed_hms_logging_enabled
- keyvault_managed_hms_purge_protection_enabled
- keyvault_purge_protection_enabled
- keyvault_rbac_enabled
- keyvault_secret_expiration_set
- keyvault_soft_delete_enabled
- keyvault_vault_private_link_used
- keyvault_vault_public_network_access_disabled
- keyvault_vault_recoverable
- keyvault_vault_use_virtual_service_endpoint
- keyvault_with_non_rbac_key_expiration_set
- keyvault_with_non_rbac_secret_expiration_set
- keyvault_with_rbac_key_expiration_set
- keyvault_with_rbac_secret_expiration_set
- kubernetes_cluster_add_on_azure_policy_enabled
- kubernetes_cluster_addon_azure_policy_enabled
- kubernetes_cluster_authorized_ip_range_defined
- kubernetes_cluster_key_vault_secret_rotation_enabled
- kubernetes_cluster_logging_enabled
- kubernetes_cluster_max_pod_50
- kubernetes_cluster_network_policy_enabled
- kubernetes_cluster_node_restrict_public_access
- kubernetes_cluster_os_and_data_disks_encrypted_with_cmk
- kubernetes_cluster_restrict_public_access
- kubernetes_cluster_sku_standard
- kubernetes_cluster_temp_disks_and_agent_node_pool_cache_encrypted_at_host
- kubernetes_cluster_upgrade_channel
- kubernetes_cluster_upgraded_with_non_vulnerable_version
- kubernetes_instance_rbac_enabled
- kusto_cluster_disk_encryption_enabled
- kusto_cluster_double_encryption_enabled
- kusto_cluster_encrypted_at_rest_with_cmk
- kusto_cluster_sku_with_sla
- logic_app_workflow_logging_enabled
- machine_learning_workspace_encrypted_with_cmk
- manual_control
- manual_control_hipaa
- mariadb_server_geo_redundant_backup_enabled
- mariadb_server_private_link_used
- mariadb_server_public_network_access_disabled
- mariadb_server_ssl_enabled
- monitor_application_insights_configured
- monitor_diagnostic_settings_captures_proper_categories
- monitor_log_alert_create_policy_assignment
- monitor_log_alert_create_update_nsg
- monitor_log_alert_create_update_nsg_rule
- monitor_log_alert_create_update_public_ip_address
- monitor_log_alert_create_update_security_solution
- monitor_log_alert_create_update_sql_servers_firewall_rule
- monitor_log_alert_delete_nsg
- monitor_log_alert_delete_nsg_rule
- monitor_log_alert_delete_policy_assignment
- monitor_log_alert_delete_public_ip_address
- monitor_log_alert_delete_security_solution
- monitor_log_alert_delete_sql_servers_firewall_rule
- monitor_log_alert_for_administrative_operations
- monitor_log_alert_sql_firewall_rule
- monitor_log_profile_enabled_for_all_categories
- monitor_log_profile_enabled_for_all_regions
- monitor_log_profile_retention_365_days
- monitor_logs_storage_container_insights_activity_logs_encrypted_with_byok
- monitor_logs_storage_container_insights_activity_logs_not_public_accessible
- monitor_logs_storage_container_insights_operational_logs_encrypted_with_byok
- monitor_logs_storage_container_insights_operational_logs_not_public_accessible
- mssql_managed_instance_encryption_at_rest_using_cmk
- mssql_managed_instance_vulnerability_assessment_enabled
- mysql_db_server_geo_redundant_backup_enabled
- mysql_server_audit_logging_enabled
- mysql_server_audit_logging_events_connection_set
- mysql_server_encrypted_at_rest_using_cmk
- mysql_server_infrastructure_encryption_enabled
- mysql_server_min_tls_1_2
- mysql_server_private_link_used
- mysql_server_public_network_access_disabled
- mysql_ssl_enabled
- network_bastion_host_min_1
- network_ddos_enabled
- network_interface_ip_forwarding_disabled
- network_lb_no_basic_sku
- network_public_ip_no_basic_sku
- network_security_group_diagnostic_setting_deployed
- network_security_group_https_access_restricted
- network_security_group_not_configured_gateway_subnets
- network_security_group_rdp_access_restricted
- network_security_group_remote_access_restricted
- network_security_group_ssh_access_restricted
- network_security_group_subnet_associated
- network_security_group_udp_service_restricted
- network_sg_flowlog_retention_period_greater_than_90
- network_virtual_network_gateway_no_basic_sku
- network_watcher_enabled
- network_watcher_in_regions_with_virtual_network
- postgres_db_server_allow_access_to_azure_services_disabled
- postgres_db_server_connection_throttling_on
- postgres_db_server_geo_redundant_backup_enabled
- postgres_db_server_latest_tls_version
- postgres_db_server_log_checkpoints_on
- postgres_db_server_log_connections_on
- postgres_db_server_log_disconnections_on
- postgres_db_server_log_retention_days_3
- postgres_server_private_link_used
- postgres_sql_server_encrypted_at_rest_using_cmk
- postgres_sql_ssl_enabled
- postgresql_server_infrastructure_encryption_enabled
- postgresql_server_public_network_access_disabled
- redis_cache_in_virtual_network
- redis_cache_min_tls_1_2
- redis_cache_no_basic_sku
- redis_cache_ssl_enabled
- redis_cache_uses_private_link
- search_service_logging_enabled
- search_service_public_network_access_disabled
- search_service_replica_count_3
- search_service_uses_managed_identity
- search_service_uses_private_link
- search_service_uses_sku_supporting_private_link
- securitycenter_additional_email_configured
- securitycenter_asc_default_setting_not_disabled
- securitycenter_automatic_provisioning_monitoring_agent_on
- securitycenter_azure_defender_on_for_appservice
- securitycenter_azure_defender_on_for_containerregistry
- securitycenter_azure_defender_on_for_containers
- securitycenter_azure_defender_on_for_cosmosdb
- securitycenter_azure_defender_on_for_database
- securitycenter_azure_defender_on_for_dns
- securitycenter_azure_defender_on_for_k8s
- securitycenter_azure_defender_on_for_keyvault
- securitycenter_azure_defender_on_for_opensource_relational_db
- securitycenter_azure_defender_on_for_resource_manager
- securitycenter_azure_defender_on_for_server
- securitycenter_azure_defender_on_for_sqldb
- securitycenter_azure_defender_on_for_sqlservervm
- securitycenter_azure_defender_on_for_storage
- securitycenter_email_configured
- securitycenter_mcas_integration
- securitycenter_notify_alerts_configured
- securitycenter_pricing_standard
- securitycenter_security_alerts_to_owner_enabled
- securitycenter_wdatp_integration
- servicebus_name_space_private_link_used
- servicebus_namespace_logging_enabled
- servicebus_premium_namespace_cmk_encrypted
- servicebus_use_virtual_service_endpoint
- servicefabric_cluster_active_directory_authentication_enabled
- servicefabric_cluster_protection_level_as_encrypt_and_sign
- signalr_service_no_free_tier_sku
- signalr_service_private_link_used
- spring_cloud_service_network_injection_enabled
- sql_database_allow_internet_access
- sql_database_long_term_geo_redundant_backup_enabled
- sql_database_transparent_data_encryption_enabled
- sql_database_vulnerability_findings_resolved
- sql_db_active_directory_admin_configured
- sql_db_public_network_access_disabled
- sql_server_and_databases_va_enabled
- sql_server_atp_enabled
- sql_server_auditing_on
- sql_server_auditing_retention_period_90
- sql_server_auditing_storage_account_destination_retention_90_days
- sql_server_azure_ad_authentication_enabled
- sql_server_azure_defender_enabled
- sql_server_tde_protector_cmk_encrypted
- sql_server_threat_detection_all_enabled
- sql_server_transparent_data_encryption_enabled
- sql_server_use_virtual_service_endpoint
- sql_server_uses_private_link
- sql_server_va_setting_periodic_scan_enabled
- sql_server_va_setting_reports_notify_admins
- sql_server_va_setting_scan_reports_configured
- storage_account_blob_containers_public_access_private
- storage_account_blob_service_logging_enabled
- storage_account_block_public_access
- storage_account_default_network_access_rule_denied
- storage_account_encryption_at_rest_using_cmk
- storage_account_encryption_scopes_encrypted_at_rest_with_cmk
- storage_account_geo_redundant_enabled
- storage_account_infrastructure_encryption_enabled
- storage_account_min_tls_1_2
- storage_account_queue_services_logging_enabled
- storage_account_restrict_network_access
- storage_account_secure_transfer_required_enabled
- storage_account_soft_delete_enabled
- storage_account_table_service_logging_enabled
- storage_account_trusted_microsoft_services_enabled
- storage_account_use_virtual_service_endpoint
- storage_account_uses_azure_resource_manager
- storage_account_uses_private_link
- storage_sync_private_link_used
- stream_analytics_job_logging_enabled
- synapse_workspace_data_exfiltration_protection_enabled
- synapse_workspace_encryption_at_rest_using_cmk
- synapse_workspace_private_link_used
- synapse_workspace_vulnerability_assessment_enabled
.inspect azure_subscription
Azure Subscription
Name | Type | Description |
---|---|---|
_ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. |
akas | jsonb | Array of globally unique identifier strings (also known as) for the resource. |
authorization_source | text | The authorization source of the request. Valid values are one or more combinations of Legacy, RoleBased, Bypassed, Direct and Management. For example, 'Legacy, RoleBased'. |
cloud_environment | text | The Azure Cloud Environment. |
display_name | text | A friendly name that identifies a subscription. |
id | text | The fully qualified ID for the subscription. For example, /subscriptions/00000000-0000-0000-0000-000000000000. |
managed_by_tenants | jsonb | An array containing the tenants managing the subscription. |
state | text | The subscription state. Possible values are Enabled, Warned, PastDue, Disabled, and Deleted. Possible values include: 'StateEnabled', 'StateWarned', 'StatePastDue', 'StateDisabled', 'StateDeleted' |
subscription_id | text | The subscription ID. |
subscription_policies | jsonb | The subscription policies. |
tenant_id | text | The subscription tenant ID. |
title | text | Title of the resource. |