Azure SQL Database – Advanced Threat Detection

You should always seriously consider enabling this feature. This is part of the ADS suite – Advanced Data Security and I will show you how good this pro-active service is.

As Microsoft states “it enables customers to detect and respond to potential threats as they occur by providing security alerts on anomalous activities. Users receive an alert upon suspicious database activities, potential vulnerabilities, and SQL injection attacks, as well as anomalous database access and queries patterns”.

This is a compelling reason to enable it. The best thing is the real time alerts, something I just recently received because someone from an unknown IP address connected to my server for the first time! This was what was awaiting for me in my inbox:

newalert

So, your next steps are to click on the investigation steps and then remediation if necessary.

If you are wondering how you configure this? Under security settings within the Azure portal for the SQL server you will find advanced threat protection settings where you can configure the alerts.

send alerts

Here you enter the email details and the protection types that you would want to be alerted on. Easy to setup!

 

 

 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s