question

ChethanHxGN avatar image
1 Vote"
ChethanHxGN asked AlbertoMorillo edited

Monitoring Azure database firewall rules - would Purview work?

I have been looking for a solution, preferably native, to monitor changes to firewall rules across multiple Azure SQL databases hosted on different Azure SQL servers. While Azure Policy seemed to fit the bill initially, it later turned out to be okayish, that too only for Azure SQL servers. Today, I came across Purview, showcased as a data governance solution. I managed to set up a Purview account and hooked up a database to be scanned. The scan rules didn't offer much customizability and it wasn't clear to me what it actually scans - does it just look for stray IP addresses across the database? I could not decipher much from the results for my use case either.

Is there any way to achieve my objective using Purview? I am also open to other suggestions to achieve it.

azure-sql-databaseazure-purviewazure-policy
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

AlbertoMorillo avatar image
1 Vote"
AlbertoMorillo answered AlbertoMorillo edited

You can use Azure Monitor to monitor any Azure SQL firewall changes and you can do more than that as you can even revert them using and Azure Logic and Azure Function as explained on this article.

Excerpt from the article:

"The easiest way to do this is to navigate to a given Azure SQL Server, open the Activity Log, and select an entry to create an alert on. The Activity Log entry should be Whenever the Activity Log has an event with Category=’Administrative’, Level=’informational’, Status=’succeeded’ and targeting an Azure SQL Server. "




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.