Log Analytics solutions for SQL servers on machines (Azure#303)

cds-snc · May 16, 2022 · 62adb00 · 62adb00
1 parent c1a3b99
commit 62adb00
Show file tree

Hide file tree

Showing 4 changed files with 11 additions and 2 deletions.
diff --git a/azresources/monitor/log-analytics.bicep b/azresources/monitor/log-analytics.bicep
@@ -31,7 +31,9 @@ var solutions = [
   'Security'
   'SecurityInsights'
   'ServiceMap'
+  'SQLAdvancedThreatProtection'
   'SQLAssessment'
+  'SQLVulnerabilityAssessment'
   'Updates'
   'VMInsights'
 ]

diff --git a/docs/archetypes/logging.md b/docs/archetypes/logging.md
@@ -36,7 +36,7 @@ Subscription can be moved to a target Management Group through Azure ARM Templat
 | Microsoft Defender for Cloud | Configures security contact information (email and phone). |
 | Subscription Role Assignments | Configures subscription scoped role assignments.  Roles can be built-in or custom. |
 | Subscription Budget | Configures monthly subscription budget with email notification. Budget is configured by default for 10 years and the amount. |
-| Log Analytics | Configures Automation Account, Log Analytics Workspace and Log Analytics Solutions (AgentHealthAssessment, AntiMalware, AzureActivity, ChangeTracking, Security, SecurityInsights, ServiceMap, SQLAssessment, Updates, VMInsights).  **SecurityInsights** solution pack will enable Microsoft Sentinel.  |
+| Log Analytics | Configures Automation Account, Log Analytics Workspace and Log Analytics Solutions (AgentHealthAssessment, AntiMalware, AzureActivity, ChangeTracking, Security, SecurityInsights, ServiceMap, SQLAdvancedThreatProtection, SQLAssessment, SQLVulnerabilityAssessment, Updates, VMInsights).  **SecurityInsights** solution pack will enable Microsoft Sentinel.  |
 | Subscription Tags | A set of tags that are assigned to the subscription. |
 | Resource Tags | A set of tags that are assigned to the resource group and resources.  These tags must include all required tags as defined the Tag Governance policy. |
 

diff --git a/docs/gc-30-day-cloud-guardrails.md b/docs/gc-30-day-cloud-guardrails.md
@@ -663,17 +663,20 @@ Relevant Links:
 
 #### 11.1 Implement adequate level of logging and reporting, including a security audit log function in all information systems.
 
-In ALZCPS deployments, the default configuration collects logs from VMs and PaaS services into a central Log Analytics Workspace. 
+In ALZCPS deployments, the default configuration collects logs from VMs and PaaS services into a central Log Analytics Workspace.
 
 The included Log Analytics Workspace solutions include:
+
 - AgentHealthAssessment
 - AntiMalware
 - AzureActivity
 - ChangeTracking
 - Security
 - SecurityInsights
 - ServiceMap
+- SQLAdvancedThreatProtection
 - SQLAssessment
+- SQLAdvancedThreatProtection
 - Updates
 - VMInsights
 
@@ -739,7 +742,9 @@ The included Log Analytics Workspace solutions include:
 - Security
 - SecurityInsights
 - ServiceMap
+- SQLAdvancedThreatProtection
 - SQLAssessment
+- SQLVulnerabilityAssessment
 - Updates
 - VMInsights
 

diff --git a/landingzones/lz-platform-logging/main.bicep b/landingzones/lz-platform-logging/main.bicep
@@ -24,7 +24,9 @@ Platform Logging archetype provides infrastructure for centrally managed Log Ana
   * Security
   * SecurityInsights (Microsoft Sentinel)
   * ServiceMap
+  * SQLAdvancedThreatProtection
   * SQLAssessment
+  * SQLVulnerabilityAssessment
   * Updates
   * VMInsights
 * Role-based access control for Owner, Contributor & Reader