Ensure notification email address is configured for Azure MSSQL Server Security Alert Policy

MEDIUM

Description

Azure MSSQL Database has an email notification function to help ensure that administrators are notified when an alert is triggered. This should be enabled as best practice.

Remediation

At this time, the console UI does not have remediation steps available. For possible CLI remediation, see the product documentation (below) or use Terraform.

In Terraform -

In the azurerm_mssql_server_security_alert_policy resource, set email_addresses.

References:
https://learn.microsoft.com/en-us/azure/azure-sql/database/alerts-insights-configure-portal?view=azuresql
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/mssql_server_security_alert_policy#email_addresses

Policy Details

Rule Reference ID: AC_AZURE_0133

CSP: Azure

Remediation Available: Yes

Domain: Logging and Monitoring

Resource: azurerm_mssql_server_security_alert_policy

Resource Category: Database

Resource Type: SQL Server

Frameworks

GDPR
NIST-800-171
NIST-800-53
NIST-CSF
HIPAA