Remediation

From Azure Portal

Log in to Azure Portal using https://portal.azure.com.
Go to Azure Database for MySQL flexible servers.
For each database, under Settings, click Server parameters.
In the filter bar, type audit_log.
Set audit_log_enabled to ON.
In the drop-down next to audit_log_events, check CONNECTION.
Click Save.
Under Monitoring, select Diagnostic settings.
Select + Add diagnostic setting.
Provide a diagnostic setting name.
Under Categories, select MySQL Audit Logs.
Specify destination details.
Click Save.

It may take up to 10 minutes for the logs to appear in the configured destination.

From Azure CLI

Use the following command to set audit_log_events to CONNECTION:

az mysql flexible-server parameter set \
    --resource-group {{resource-group-name}} \
    --server-name {{server-name}} \
    --name audit_log_events \
    --value CONNECTION

From PowerShell

Use the following command to set audit_log_events to CONNECTION:

Update-AzMySqlFlexibleServerConfiguration `
    -ResourceGroupName {{resource-group-name}} `
    -ServerName {{server-name}} `
    -Name audit_log_events `
    -Value CONNECTION

From Azure Portal​

From Azure CLI​

From PowerShell​

From Azure Portal

From Azure CLI

From PowerShell