Azure SQL Database must generate audit records when security objects are deleted.
An XCCDF Rule
Description
The removal of security objects from the database/DBMS would seriously degrade a system's information assurance posture. If such an event occurs, it must be logged.
- ID
- SV-255364r961818_rule
- Version
- ASQL-00-014300
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Deploy an Azure SQL Database audit.
Refer to the supplemental file "AzureSQLDatabaseAudit.txt" PowerShell script.
Reference:
https://docs.microsoft.com/en-us/powershell/module/az.sql/set-azsqlserveraudit">https://docs.microsoft.com/en-us/powershell/module/az.sql/set-azsqlserveraudit