Azure SQL Server with Auditing written to Event Hub

Azure Public Test Date Azure Public Test Result

Azure US Gov Last Test Date Azure US Gov Last Test Result

Best Practice Check Cred Scan Check

Deploy To Azure Visualize Deploy To Azure US Gov Visualize

This template allows you to deploy an Azure SQL server with Auditing enabled to write audit logs to an exiting Event Hub.

In order to send audit events to Event Hub, set auditing settings with 'Enabled' 'State' and set 'IsAzureMonitorTargetEnabled' as true. Also, configure Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the 'master' database (for serve level auditing).

Auditing for Azure SQL Database and SQL Data Warehouse tracks database events and writes them to an audit log in your Azure storage account, OMS workspace or Event Hubs.

For more information on SQL database auditing , see the official documentation.

Enable Auditing of Microsoft support operations (isMSDevOpsAuditEnabled) to tracks Microsoft support engineers'(DevOps) operations on your server and write them to an Event Hub.

For more information on Auditing of Microsoft support operations, see the official documentation.

Tags: Microsoft.EventHub/namespaces, eventhubs, Microsoft.Sql/servers, databases, databases/providers/diagnosticSettings, auditingSettings, devOpsAuditingSettings