Ensure usage of names like 'Admin' are avoided for Azure SQL Server

MEDIUM

Description

Names like azure_superuser, azure_pg_admin, admin, administrator, root, guest, public for an Azure SQL Server Active Directory Administrator account are used, this may lead to unauthorized access via brute force attack.

Remediation

In Azure Console -

Open the Azure Portal and go to SQL servers.
Choose the SQL server you wish to edit.
Under Overview, validate Server admin name is not predictable.
Select Save

In Terraform -

In the azurerm_sql_server resource, validate administrator_login name is not predictable.

References:
https://learn.microsoft.com/en-us/azure/azure-sql/database/logins-create-manage?view=azuresql
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/sql_server

Policy Details

Rule Reference ID: AC_AZURE_0545

CSP: Azure

Remediation Available: Yes

Domain: Compliance Validation

Resource: azurerm_mssql_server

Resource Category: Database

Resource Type: SQL Server

Frameworks

GDPR
HIPAA
ISO-27001
NIST-800-171
NIST-800-53
NIST-CSF
PCI-DSSv3.2.1
SOC2
NY-DFS

Detections

Analytics