Microsoft.Sql servers/securityAlertPolicies 2022-02-01-preview
Bicep resource definition
The servers/securityAlertPolicies resource type can be deployed with operations that target:
- Resource groups - See resource group deployment commands
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Sql/servers/securityAlertPolicies resource, add the following Bicep to your template.
resource symbolicname 'Microsoft.Sql/servers/securityAlertPolicies@2022-02-01-preview' = {
name: 'Default'
parent: resourceSymbolicName
properties: {
disabledAlerts: [
'string'
]
emailAccountAdmins: bool
emailAddresses: [
'string'
]
retentionDays: int
state: 'string'
storageAccountAccessKey: 'string'
storageEndpoint: 'string'
}
}
Property values
servers/securityAlertPolicies
Name | Description | Value |
---|---|---|
name | The resource name See how to set names and types for child resources in Bicep. |
'Default' |
parent | In Bicep, you can specify the parent resource for a child resource. You only need to add this property when the child resource is declared outside of the parent resource. For more information, see Child resource outside parent resource. |
Symbolic name for resource of type: servers |
properties | Resource properties. | SecurityAlertsPolicyProperties |
SecurityAlertsPolicyProperties
Name | Description | Value |
---|---|---|
disabledAlerts | Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force | string[] |
emailAccountAdmins | Specifies that the alert is sent to the account administrators. | bool |
emailAddresses | Specifies an array of e-mail addresses to which the alert is sent. | string[] |
retentionDays | Specifies the number of days to keep in the Threat Detection audit logs. | int |
state | Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database. | 'Disabled' 'Enabled' (required) |
storageAccountAccessKey | Specifies the identifier key of the Threat Detection audit storage account. | string |
storageEndpoint | Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net ). This blob storage will hold all Threat Detection audit logs. |
string |
ARM template resource definition
The servers/securityAlertPolicies resource type can be deployed with operations that target:
- Resource groups - See resource group deployment commands
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Sql/servers/securityAlertPolicies resource, add the following JSON to your template.
{
"type": "Microsoft.Sql/servers/securityAlertPolicies",
"apiVersion": "2022-02-01-preview",
"name": "Default",
"properties": {
"disabledAlerts": [ "string" ],
"emailAccountAdmins": "bool",
"emailAddresses": [ "string" ],
"retentionDays": "int",
"state": "string",
"storageAccountAccessKey": "string",
"storageEndpoint": "string"
}
}
Property values
servers/securityAlertPolicies
Name | Description | Value |
---|---|---|
type | The resource type | 'Microsoft.Sql/servers/securityAlertPolicies' |
apiVersion | The resource api version | '2022-02-01-preview' |
name | The resource name See how to set names and types for child resources in JSON ARM templates. |
'Default' |
properties | Resource properties. | SecurityAlertsPolicyProperties |
SecurityAlertsPolicyProperties
Name | Description | Value |
---|---|---|
disabledAlerts | Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force | string[] |
emailAccountAdmins | Specifies that the alert is sent to the account administrators. | bool |
emailAddresses | Specifies an array of e-mail addresses to which the alert is sent. | string[] |
retentionDays | Specifies the number of days to keep in the Threat Detection audit logs. | int |
state | Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database. | 'Disabled' 'Enabled' (required) |
storageAccountAccessKey | Specifies the identifier key of the Threat Detection audit storage account. | string |
storageEndpoint | Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net ). This blob storage will hold all Threat Detection audit logs. |
string |
Terraform (AzAPI provider) resource definition
The servers/securityAlertPolicies resource type can be deployed with operations that target:
- Resource groups
For a list of changed properties in each API version, see change log.
Resource format
To create a Microsoft.Sql/servers/securityAlertPolicies resource, add the following Terraform to your template.
resource "azapi_resource" "symbolicname" {
type = "Microsoft.Sql/servers/securityAlertPolicies@2022-02-01-preview"
name = "Default"
parent_id = "string"
body = jsonencode({
properties = {
disabledAlerts = [
"string"
]
emailAccountAdmins = bool
emailAddresses = [
"string"
]
retentionDays = int
state = "string"
storageAccountAccessKey = "string"
storageEndpoint = "string"
}
})
}
Property values
servers/securityAlertPolicies
Name | Description | Value |
---|---|---|
type | The resource type | "Microsoft.Sql/servers/securityAlertPolicies@2022-02-01-preview" |
name | The resource name | "Default" |
parent_id | The ID of the resource that is the parent for this resource. | ID for resource of type: servers |
properties | Resource properties. | SecurityAlertsPolicyProperties |
SecurityAlertsPolicyProperties
Name | Description | Value |
---|---|---|
disabledAlerts | Specifies an array of alerts that are disabled. Allowed values are: Sql_Injection, Sql_Injection_Vulnerability, Access_Anomaly, Data_Exfiltration, Unsafe_Action, Brute_Force | string[] |
emailAccountAdmins | Specifies that the alert is sent to the account administrators. | bool |
emailAddresses | Specifies an array of e-mail addresses to which the alert is sent. | string[] |
retentionDays | Specifies the number of days to keep in the Threat Detection audit logs. | int |
state | Specifies the state of the policy, whether it is enabled or disabled or a policy has not been applied yet on the specific database. | "Disabled" "Enabled" (required) |
storageAccountAccessKey | Specifies the identifier key of the Threat Detection audit storage account. | string |
storageEndpoint | Specifies the blob storage endpoint (e.g. https://MyAccount.blob.core.windows.net ). This blob storage will hold all Threat Detection audit logs. |
string |