az synapse sql pool threat-policy
Manage a SQL pool's threat detection policies.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az synapse sql pool threat-policy show |
Get a SQL pool's threat detection policy. |
Core | GA |
| az synapse sql pool threat-policy update |
Update a SQL pool's threat detection policy. |
Core | GA |
az synapse sql pool threat-policy show
Get a SQL pool's threat detection policy.
az synapse sql pool threat-policy show --security-alert-policy-name
[--ids]
[--name]
[--resource-group]
[--subscription]
[--workspace-name]Examples
Get a SQL pool's threat detection policy.
az synapse sql pool threat-policy show --name sqlpool --workspace-name testsynapseworkspace \
--resource-group rg --security-alert-policy-name threatpolicyRequired Parameters
Name of the security alert policy.
Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The SQL pool name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The workspace name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az synapse sql pool threat-policy update
Update a SQL pool's threat detection policy.
If the policy is being enabled, storage_account or both storage_endpoint and storage_account_access_key must be specified.
az synapse sql pool threat-policy update [--add]
[--disabled-alerts]
[--email-account-admins {false, true}]
[--email-addresses]
[--force-string]
[--ids]
[--name]
[--remove]
[--resource-group]
[--retention-days]
[--security-alert-policy-name]
[--set]
[--state {Disabled, Enabled, New}]
[--storage-account]
[--storage-endpoint]
[--storage-key]
[--subscription]
[--workspace-name]Examples
Enable by storage account name.
az synapse sql pool threat-policy update --name sqlpool --workspace-name testsynapseworkspace --resource-group rg \
--state Enabled --storage-account mystorageaccount --security-alert-policy-name threatpolicyEnable by storage endpoint and key.
az synapse sql pool threat-policy update --name sqlpool --workspace-name testsynapseworkspace --resource-group rg \
--state Enabled --storage-endpoint https://mystorage.blob.core.windows.net --storage-key MYKEY== \
--security-alert-policy-name threatpolicyDisable a subset of alert types.
az synapse sql pool threat-policy update --name sqlpool --workspace-name testsynapseworkspace --resource-group rg \
--disabled-alerts Sql_Injection_Vulnerability Access_Anomaly --security-alert-policy-name threatpolicyConfigure email recipients for a policy.
az synapse sql pool threat-policy update --name sqlpool --workspace-name testsynapseworkspace --resource-group rg \
--email-addresses me@examlee.com you@example.com --email-account-admins true \
--security-alert-policy-name threatpolicyDisable a threat policy.
az synapse sql pool threat-policy update --name sqlpool --workspace-name testsynapseworkspace --resource-group rg \
--state Disabled --security-alert-policy-name threatpolicyOptional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.
| Property | Value |
|---|---|
| Parameter group: | Generic Update Arguments |
| Default value: | [] |
List of disabled alerts.
| Property | Value |
|---|---|
| Parameter group: | Policy Arguments |
Whether the alert is sent to the account administrators.
| Property | Value |
|---|---|
| Parameter group: | Notification Arguments |
| Accepted values: | false, true |
List of email addresses that alerts are sent to.
| Property | Value |
|---|---|
| Parameter group: | Notification Arguments |
When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.
| Property | Value |
|---|---|
| Parameter group: | Generic Update Arguments |
| Default value: | False |
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The SQL pool name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Remove a property or an element from a list. Example: --remove property.list <indexToRemove> OR --remove propertyToRemove.
| Property | Value |
|---|---|
| Parameter group: | Generic Update Arguments |
| Default value: | [] |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The number of days to retain threat detection logs.
| Property | Value |
|---|---|
| Parameter group: | Policy Arguments |
Name of the security alert policy.
Update an object by specifying a property path and value to set. Example: --set property1.property2=<value>.
| Property | Value |
|---|---|
| Parameter group: | Generic Update Arguments |
| Default value: | [] |
Threat detection policy state.
| Property | Value |
|---|---|
| Parameter group: | Policy Arguments |
| Accepted values: | Disabled, Enabled, New |
Name of the storage account.
| Property | Value |
|---|---|
| Parameter group: | Storage Arguments |
The storage account endpoint.
| Property | Value |
|---|---|
| Parameter group: | Storage Arguments |
Access key for the storage account.
| Property | Value |
|---|---|
| Parameter group: | Storage Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
The workspace name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
