Azure SQL Server with Auditing written to Event Hub
This template allows you to deploy an Azure SQL server with Auditing enabled to write audit logs to an exiting Event Hub.
In order to send audit events to Event Hub, set auditing settings with 'Enabled' 'State' and set 'IsAzureMonitorTargetEnabled' as true. Also, configure Diagnostic Settings with 'SQLSecurityAuditEvents' diagnostic logs category on the 'master' database (for serve level auditing).
Auditing for Azure SQL Database and SQL Data Warehouse tracks database events and writes them to an audit log in your Azure storage account, OMS workspace or Event Hubs.
For more information on SQL database auditing , see the official documentation.
Enable Auditing of Microsoft support operations (isMSDevOpsAuditEnabled) to tracks Microsoft support engineers'(DevOps) operations on your server and write them to an Event Hub.
For more information on Auditing of Microsoft support operations, see the official documentation.
Tags: Microsoft.EventHub/namespaces, eventhubs, Microsoft.Sql/servers, databases, databases/providers/diagnosticSettings, auditingSettings, devOpsAuditingSettings