Enable Vulnerability Assessment Periodic Recurring Scans setting for critical Microsoft SQL servers and corresponding SQL databases. Once the security setting is enabled, scans will be performed automatically once a week. A scan result summary will be sent to the email address(es) that you provide.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
The Periodic Recurring Scans setting schedules periodic (weekly) vulnerability scanning for Microsoft SQL servers and their corresponding databases. Regular vulnerability scanning provides risk visibility based on the updated list of known vulnerability signatures and best practices.
Audit
To determine if the Periodic Recurring Scans setting is enabled for your Microsoft SQL servers, perform the following actions:
Remediation / Resolution
To enable and configure Vulnerability Assessment Periodic Recurring Scans for your Microsoft SQL database servers, perform the following actions:
References
- Azure Official Documentation
- SQL vulnerability assessment helps you identify database vulnerabilities
- Server Vulnerability Assessments - List By Server
- PV-6: Perform software vulnerability assessments
- Azure PowerShell Documentation
- Az.Sql
- Get-AzSqlServer
- Get-AzSqlServerVulnerabilityAssessmentSetting
- Update-AzSqlServerVulnerabilityAssessmentSetting
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Enable Vulnerability Assessment Periodic Recurring Scans
Risk Level: Medium