Vulnerability Assessment should be enabled for SQL server

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

The Vulnerability Assessment service is a valuable tool that analyzes SQL databases to identify security issues and deviations from best practices. It helps identify misconfigurations, excessive permissions, and other potential vulnerabilities. The service provides remediation steps, customizable scripts, and assessment reports with customizable baseline settings. Enabling these features in Microsoft Defender for SQL comes with additional costs per SQL server.

Remediation

Azure is transitioning from Classic Configuration to Express Configuration. For specific configuration instructions that fit your use case, see Enable vulnerability assessment on your Azure SQL databases and servers.