Administrator can enable Azure Best Practices Flag as True at the Infrastructure level, to enable the listing security settings for tenants configured in the Infrastructure.
| Setting Name | Description |
|---|---|
Enable Azure MSSQL Server Audit
Enable SQL Server audit feature in Azure
Enable Azure MSSQL Database Audit
Enable SQL Database audit feature in Azure
Enable Azure MSSQL Transparent Data Encryption (TDE)
enable_sqlserver_defender
Enable SQLServer Cloud Defender
Enable Azure MSSQL SQL Server Vulnerability Settings
Enable Azure MSSQL SQL Database Vulnerability Settings
Microsoft Defender for CLoud gets enabled for the Infrastructure
Enable Azure VM Antimalware Extension
Enable Azure VM Qualys Extension
Enable Azure VM Dependency Agent Extension
Enable Azure VM Diagnostic Agent Extension
Enable Azure Storage Account Secure Transfer
Secure transfer for Azure Storage will be enabled
Allow Public Network Access for Databases and Cache Servers
block_public_network_to_azure_storage
Restricts public network access to Azure Storage
disable_public_lb
Restricts public network access to Azure Application Gateway