Administrator can enable Azure Best Practices Flag as True at the Infrastructure level, to enable the listing security settings for tenants configured in the Infrastructure.
Setting Name | Description |
---|---|
Enable Azure MSSQL Server Audit | Enable SQL Server audit feature in Azure |
Enable Azure MSSQL Database Audit | Enable SQL Database audit feature in Azure |
Enable Azure MSSQL Transparent Data Encryption (TDE) | |
enable_sqlserver_defender | Enable SQLServer Cloud Defender |
Enable Azure MSSQL SQL Server Vulnerability Settings | |
Enable Azure MSSQL SQL Database Vulnerability Settings | Microsoft Defender for CLoud gets enabled for the Infrastructure |
Enable Azure VM Antimalware Extension | |
Enable Azure VM Qualys Extension | |
Enable Azure VM Dependency Agent Extension | |
Enable Azure VM Diagnostic Agent Extension | |
Enable Azure Storage Account Secure Transfer | Secure transfer for Azure Storage will be enabled |
Allow Public Network Access for Databases and Cache Servers | |
block_public_network_to_azure_storage | Restricts public network access to Azure Storage |
disable_public_lb | Restricts public network access to Azure Application Gateway |