📝 Azure Subscription Microsoft Defender For Open-Source Relational Databases is not set to On 🟢

Contextual name: 📝 Microsoft Defender For Open-Source Relational Databases is not set to On 🟢
ID: /ce/ca/azure/subscription/microsoft-defender-for-open-source-relational-databases
Located in: 📁 Azure Subscription

Flags

Our Metadata

Policy Type: COMPLIANCE_POLICY
Policy Category:
- SECURITY

Logic

🧠 prod.logic.yaml 🟢
- 📕 Azure Subscription
- 🔌 Azure Defender Plan - object.extracts.yaml
- 🧪 test-data.json

Description

Description

Turning on Microsoft Defender for Open-source relational databases enables threat detection for Open-source relational databases, providing threat intelligence, anomaly detection, and behavior analytics in the Microsoft Defender for Cloud.

Rationale

Enabling Microsoft Defender for Open-source relational databases allows for greater defense-in-depth, with threat detection provided by the Microsoft Security Response Center (MSRC).

Impact

Turning on Microsoft Defender for Open-source relational databases incurs an additional cost per resource.

Audit

From Azure Portal

Go to Microsoft Defender for Cloud.

Under Management, select Environment Settings.

Click on the subscription name.

Select the Defender plans blade.

Click Select types > in the row for Databases.

Ensure the toggle switch next to Open-source relational databases is set to On.

From Azure CLI

Run the following command:
az security pricing show -n OpenSourceRelationalDatabases --query pricingTier
From PowerShell

... see more

Remediation

Open File

Remediation

From Azure Portal

Go to Microsoft Defender for Cloud.

Under Management, select Environment Settings.

Click on the subscription name.

Select the Defender plans blade.

Click Select types > in the row for Databases.

Set the toggle switch next to Open-source relational databases to On.

Select Continue.

Select Save.

From Azure CLI

Run the following command:
az security pricing create -n 'OpenSourceRelationalDatabases' --tier 'standard'
From PowerShell

Use the below command to enable Standard pricing tier for Open-source relational databases:
set-azsecuritypricing -name "OpenSourceRelationalDatabases" -pricingtier "Standard"

policy.yaml

Open File

Linked Framework Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS Azure v2.1.0 → 💼 2.1.5 Ensure That Microsoft Defender for Open-Source Relational Databases Is Set To 'On' - Level 2 (Automated)			1
💼 CIS Azure v3.0.0 → 💼 3.1.7.2 Ensure That Microsoft Defender for Open-Source Relational Databases Is Set To 'On' (Automated)			1
💼 Cloudaware Framework → 💼 Microsoft Defender Configuration			26

Flags​

Our Metadata​

Logic​

Description​

Description​

Rationale​

Impact​

Audit​

From Azure Portal​

From Azure CLI​

From PowerShell​

Remediation​

Remediation​

From Azure Portal​

From Azure CLI​

From PowerShell​

policy.yaml​

Linked Framework Sections​

Flags

Our Metadata

Logic

Description

Description

Rationale

Impact

Audit

From Azure Portal

From Azure CLI

From PowerShell

Remediation

Remediation

From Azure Portal

From Azure CLI

From PowerShell

policy.yaml

Linked Framework Sections