Auditing on SQL Server should be enabled

Description

Enabling auditing on SQL Servers in the Azure platform ensures that all databases on the server instance are audited, maintaining regulatory compliance and providing insight into database activity to detect anomalies and security violations. Auditing policies applied at the database level do not override the policies and settings set at the server level.

Remediation

To enable auditing on your Azure SQL Server, you can follow these steps:

  1. Sign in to the Azure portal and navigate to your SQL server.
  2. Go to the left-hand menu, scroll down, and select Auditing under the Security section.
  3. In the Auditing window, click on Turn On Auditing or Configure Auditing to set up the auditing settings.
  4. Configure the desired settings, such as choosing the storage account to store the audit logs, setting auditing retention, and selecting specific events to audit.
  5. Once you have configured the auditing settings, click Save or Apply to enable auditing on the SQL server.