Detections
Analytics

Ensure cross account access is disabled for Azure SQL Server

MEDIUM

Description

Start and End IPs are too open, they may lead to cross account access for Azure SQL Server.

Remediation

In Azure Console -

  1. Open the Azure Portal and go to SQL servers.
  2. Choose the SQL server you wish to edit.
  3. Under Networking, Validate start ip address and end ip address are not set to public internet.
  4. Select Save

In Terraform -

  1. In the azurerm_sql_firewall_rule resource, set start_ip_address and end_ip_address.

References:
https://learn.microsoft.com/en-us/azure/azure-sql/database/firewall-configure?view=azuresql
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/sql_firewall_rule

Policy Details

Rule Reference ID: AC_AZURE_0205
CSP: Azure
Remediation Available: No
Domain: Identity and Access Management
Resource: azurerm_sql_server
Resource Category: Database
Resource Type: SQL Server

Frameworks