Bewerken

Delen via


Start-AzSynapseSqlPoolVulnerabilityAssessmentScan

Starts a vulnerability assessment scan.

Syntax

Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
     [-SqlPoolObject <PSSynapseSqlPool>]
     [-AsJob]
     [-DefaultProfile <IAzureContextContainer>]
     [-WhatIf]
     [-Confirm]
     [<CommonParameters>]
Start-AzSynapseSqlPoolVulnerabilityAssessmentScan
     [-ResourceGroupName <String>]
     -WorkspaceName <String>
     -Name <String>
     [-ScanId <String>]
     [-AsJob]
     [-DefaultProfile <IAzureContextContainer>]
     [-WhatIf]
     [-Confirm]
     [<CommonParameters>]

Description

The Start-AzSynapseSqlPoolVulnerabilityAssessmentScan cmdlet triggers a scan with ScanId identifier. Scan results will be saved under the storage defined by the Update-AzSynapseSqlPoolVulnerabilityAssessmentSetting cmdlet, under scans/{WorkspaceName}/{Name}/scan_{ScanId}.json You can monitor the progress of the scan by using the Get-AzSynapseSqlPoolVulnerabilityAssessmentScanRecord cmdlet with the scanId parameter and look at the State returned parameter. Note that you need to run Enable-AzSynapseSqlAdvancedThreatProtection and Update-AzSynapseSqlPoolVulnerabilityAssessmentSetting cmdlet as a prerequisite for using this cmdlets.

Examples

Example 1: Starts a vulnerability assessment scan

Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
            -ResourceGroupName "ResourceGroup01" `
            -WorkspaceName "WorkspaceName01" `
            -Name "Name01" `
            -ScanId "myScan"

ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name01
ScanId                       : myScan
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Error                        : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9

Example 2: Starts a vulnerability assessment scan without a specific scan ID

Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
            -ResourceGroupName "ResourceGroup01" `
            -WorkspaceName "WorkspaceName01" `
            -Name "Name01"

ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name01
ScanId                       : 20180611_135726
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Errors                       : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9

This command generates a scan ID in the format of "yyyyMMdd_HHmmss" from the UTC date time.

Example 3: Starts a vulnerability assessment scan in the background

$scanJob = Start-AzSynapseSqlPoolVulnerabilityAssessmentScan `
            -ResourceGroupName "ResourceGroup01" `
            -WorkspaceName "WorkspaceName01" `
            -Name "Name01" `
            -ScanId "myScan" `
            -AsJob
$scanJob | Wait-Job
$scanJob | Receive-Job

ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name01
ScanId                       : myScan
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Errors                       : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9

Example 4: Starts a vulnerability assessment scan with a managed sql pool object

Get-AzSynapseSqlPool `
            -ResourceGroupName "ResourceGroup01" `
            -WorkspaceName "WorkspaceName01" `
            -Name "Name01" `
            | Start-AzSynapseSqlPoolVulnerabilityAssessmentScan

ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name01
ScanId                       : 20180611_135726
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Errors                       : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9

Example 5: Starts a vulnerability assessment scan on all the databases under a managed instance

Get-AzSynapseSqlPool `
            -ResourceGroupName "ResourceGroup01" `
            -WorkspaceName "WorkspaceName01" `
            | Where-Object {$_.Name -ne "master"}  `
            | Start-AzSynapseSqlPoolVulnerabilityAssessmentScan

ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name01
ScanId                       : 20180611_135726
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Errors                       : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name01/scan_myScan.json
NumberOfFailedSecurityChecks : 9


ResourceGroupName            : ResourceGroup01
WorkspaceName                : WorkspaceName01
Name                         : Name02
ScanId                       : 20180611_135726
TriggerType                  : OnDemand
State                        : Fail
StartTime                    : 6/11/2018 1:57:27 PM
EndTime                      : 6/11/2018 1:57:31 PM
Errors                       : {}
ScanResultsLocationPath      : https://myaccount.blob.core.windows.net/vulnerability-assessment
                                scans/WorkspaceName01/Name02/scan_myScan.json
NumberOfFailedSecurityChecks : 9

Parameters

-AsJob

Run cmdlet in the background

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-DefaultProfile

The credentials, account, tenant, and subscription used for communication with Azure.

Type:IAzureContextContainer
Aliases:AzContext, AzureRmContext, AzureCredential
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-Name

Name of Synapse SQL pool.

Type:String
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-ResourceGroupName

The name of the resource group.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-ScanId

Specifies the scan ID.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-SqlPoolObject

The sql pool object to get Vulnerability Assessment scan record for

Type:PSSynapseSqlPool
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-WorkspaceName

Name of Synapse workspace.

Type:String
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

Inputs

PSSynapseSqlPool

String

Outputs

Microsoft.Azure.Commands.Synapse.Models.PSSynapseSqlPool.PSVulnerabilityAssessmentScanRecordModel